Dynamic Mobile App Security Testing (DMAST) with Android Emulator OWASP ZAP

Go to AVD Manager
Click “Create Virtual Device”
Choose a virtual device model.
Choose a release with a corresponding API level and Android version (30 and 11.0, respectively, are the most recent at the time of writing)
alex@ubuntu:~$ emulator -list-avdsPixel_4_XL_API_28
alex@ubuntu:~$ emulator -avd Pixel_4_XL_API_30 -writable-system -no-snapshot
emulator: command not found
export PATH=$PATH:/home/alex/Android/Sdk/emulator
PATH= %PATH%;C:\Users\User\AppData\Local\Android\Sdk\emulator
Search for “Edit the system environment variables”
Click Environment Variables… > Edit… > New, and type in the path.
The correct proxy settings on the virtual device
The correct proxy settings on OWASP ZAP
A certificate should already have been auto-generated. You can also generate a new one by clicking “Generate”.




A variety of topics related to the information security (infosec) field

Love podcasts or audiobooks? Learn on the go with our new app.

Recommended from Medium

Particl Marketplace Update: Backend

Follow these steps to solve any Dynamic Programming interview problem

Deferring commitments: Tagless Final

Setting up a VNC screen share on a Raspberry Pi and a Mac.

(JP➝EN)(Subtitles) Hello! Project 20th Anniversary Project: DANCE

3 Tips for working with the Tailwind Forms plugin

Machine Learning Pipelines With Scikit-Learn

Management Bug

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
Alex Myers Security Engineer

Alex Myers Security Engineer

A variety of topics related to the information security (infosec) field

More from Medium

The Ultimate Guide To drawing path using CustomPaint in Flutter

App Ideas to Create a Secure Messaging App like Signal

Symmetric cryptography differences between iOS and Android

How to setup Appium Android & iOS