[Mobile Application]
Security Research Center
Tracking non-system accessibility services
Technique summary | |
Technique | Tracking non-system accessibility services |
Against | Malicious accessibility services |
Limitations | Requires QUERY_ALL_PACKAGES privilege |
Side effects | This technique will restrict any third-party accessibility service |
Recommendations | Not recommended for regular use due to severe restrictions the technique imposes |
This technique is an extension of accessibility services allowlisting.
A variation of the allowlisting method would be to track those applications with enabled accessibility services that are not installed in the device system image. For this, FLAG_SYSTEM
can be checked for all the listed applications.
Code snippet:
Guardsquare
Connect with the author
Table of contents