gradmin

For any business to run profoundly, Customer/Consumer satisfaction remains a key aspect. Right from communicating the needs, to implementing and delivering an optimized working solution, to catering the dynamic needs, to proper addressing of feedbacks and grievances, of a customer, a business needs to cater to all these, in order to survive and grow in long run.

But, looking after all of these points manually could prove to be a tedious task, hence automation of these processes via DevOps plays a vital role here. That’s when CRM comes into the picture.

CRM is a combination of business strategies, software and processes that helps to build long-lasting relationship between companies and their customers. CRM software, gathers customer data from multiple channels and stores detailed information on aspects like, overall purchase history, personal information and even purchasing behavior patterns. Hence, playing a key role in catering to the needs and demands of the customer will make the GRhombus the best salesforce DevOps providers in Chennai.

Salesforce is the best CRM solution present, that brings companies and customers together. It provides one integrated platform, from which any department of the organization can benefit.

Marketing, sales, commerce and service, all the departments can view a single, shared view of the customer.

Since, every department have a shared single view of the costumer, they can better understand and meet their demands, helping close sales quicker, marketing hits the mark and because of which customer loyalty drives the business.

GRhombus which has the best salesforce DevOps tools in UK is the best CRM platform, which includes best-in-class app for every phase of customer’s journey.

• It consists of Einstein AI, which automates repetitive tasks, decreasing the workload of employees.

It provides answers to customers most common questions, with needing the involvement of an employee.

It also provides recommendations to employees in tough cases.

• It consists of built-in employee experience, via Salesforce anywhere.

It makes team collaboration effortless, even if they are far apart.

Sales team can close sales from anywhere, like service teams can serve to customer needs from anywhere.

Employees can also opt-in to receive alerts, when there is a change in some important data, hence keeping them up-to date.

It also helps the teams to prioritize their workload, by attaching action items to alerts.

• Provides the learning platform which can help to skill-up employees, customers and partners. Makes on-boarding process easy and reduces in-person training cost.
• Customers can self-serve with product learning’s.
• Empowers partners with product and process learning.
• GRhombus provides with seamless data integration.
• Tableau analytics provides with real-time analytics and data visualizations.
• It also helps to quickly spot patterns.
• Also helps teams to share insights easily
• Consists of consent management framework, which helps to gain costumer consent easily in areas like, email marketing and digital advertising.
• Segmentation capabilities helps companies to identify their target audience based on demographics, engagement history or other available customer information.

The best CRM solution can be deployed in 2 ways –

On-premise

The software is located on company’s server. The company needs to purchase the license beforehand. It is buyer’s responsibility for the constant maintenance of on-premise system; the vendor will only deal with critical issues.

Cloud Based CRM

Stores data on vendor’s server. The users have access to the database at anytime from anywhere. The vendor takes the responsibility for maintenance and seamless operation. It’s also highly scalable. Its only requirement is strong internet connection and affordable monthly or annual fee. GRhombus is one such organization which provides salesforce solutions.

• They provide customized solutions based on business processes and workflow needs.
• Provides advanced automation functions via custom application development to make salesforce solutions more powerful.
• Provide customized automation testing frameworks via which testing is done on each salesforce component and workflow.

DevOps is a bunch of practices that joins programming advancement (Dev) and IT tasks (Ops). It intends to abbreviate the frameworks improvement life cycle and give consistent conveyance high programming quality. DevOps is reciprocal with agile programming advancement; a few DevOps angles came from the agile system and make the leading DevOps developments in USA.

GRhombus which makes the best software developments in UK is a cross-practical blend of the terms and ideas for “improvement” and “activities,” scholastics and specialists have not fostered a remarkable definition for the expression “DevOps”. The thought behind this training is to make conveyance groups answerable for the creation issues and fixes, regardless of whether heritage or new. In conventional practices, conveyance would just be liable for the progressions placed in by them, inside the guarantee time frame.

From a scholastic point of view, Len Bass, Ingo Weber, and Liming Zhu—three software engineering specialists from the CSIRO and the Software Engineering Institute—recommended characterizing DevOps as “a bunch of practices planned to diminish the time between submitting a change to a framework and the change being set into ordinary creation, while guaranteeing superior grade”. The term DevOps, be that as it may, has been utilized in numerous unique situations. GRhombus frames the best DevOps software developments in India and the leading DevOps software in UK.

GRhombus, the best AWS DevOps development and as an organization puts forth our large number of thoughts principal to DevOps and the rehearses are motivated by, or reflect, practices, for example, from Lean and Deming’s Plan-Do-Check-Act cycle, through to The Toyota Way and the agile methodology of separating segments and group sizes. In 1993 the Telecommunications Information Networking Architecture Consortium (TINA-C) characterized a Model of a Service Lifecycle that consolidated programming improvement with (telecom) administration activities. Some say that the best DevOps development in India arose to a limited extent as a response to the “hierarchical” proscriptive methodology of ITIL during the 1990s. DevOps, as a “base up” approach, acquired footing and continued on the grounds that it was made by programmers for programmers, and is an adaptable practice as opposed to an unbending structure.

In 2009, the main meeting named DevOps days was held in Ghent, Belgium. The meeting was established by Belgian specialist, project administrator and spry professional Patrick Debois. The meeting has now spread to different nations. In 2012, the State of DevOps report was imagined and dispatched by Alana Brown at Puppet. Starting at 2014, the yearly State of DevOps report was distributed by Nicole Forsgren, Gene Kim, Jez Humble and others. In 2014, they found that DevOps appropriation was speeding up. Likewise in 2014, Lisa Crispin and Janet Gregory composed the book More Agile Testing, containing a part on testing and DevOps.

GRhombus makes the leading DevOps software developments and reconciliation targets item conveyance, constant testing, quality testing, highlight advancement, and upkeep discharges to improve dependability and security and give quicker turn of events and organization cycles. Many of the thoughts (and individuals) associated with DevOps came from the venture frameworks, the board and light-footed programming advancement developments as:

• Practices that relate with arrangement recurrence are:
• Consistent conveyance
• Utilizing rendition control for all creation relics
• Practices that associate with a lead time for change are:
• Utilizing adaptation control for all creation curios
• Computerized testing
• Practices that connect with an interim to recuperation for change are ;
• Utilizing rendition control for all creation curios
• Observing framework and application wellbeing

GRhombus inspirations for what has become present day best DevOps development and a few standard top DevOps software practices like robotized assemble and test, ceaseless mix, and persistent conveyance began in the agile world, which dates (casually) to the 1990s, and officially to 2001. Dexterous advancement groups utilizing strategies, for example, Extreme Programming proved unable “fulfill the client through right on time and persistent conveyance of significant programming” except if they subsumed the activities/framework obligations related with their applications, a considerable lot of which they mechanized. Since Scrum arose as the predominant agile system in the mid-2000s and it discarded the designing practices that were important for some agile groups, the development to computerize tasks/foundation capacities fragmented from Agile and ventured into what has become present day DevOps. Today, GRhombus DevOps centres in USA on the organization of created programming, regardless of whether it is created through Agile or different approaches.

Automation testing is a procedure that utilizes an application to execute whole life pattern of the product in less time and gives proficiency and viability to the testing programming. Automation testing is an Automatic procedure where the analyser composes scripts by own and utilizes reasonable programming to test the product. It is fundamentally a mechanization interaction of a manual cycle. Like relapse testing, Automation testing likewise used to test the application from burden, execution and emphasize perspective.

In other words, Automation testing utilizes automation instruments to compose and execute experiments, no manual association is required while executing Automated test suite. Normally, analysers compose test scripts and experiments utilizing the Automation application and afterward bunch into test suites. The fundamental objective of Automation testing is to expand the test effectiveness and create programming esteem.

What sorts of capacities to mechanize utilizing Automation testing devices?

The facts confirm that everything isn’t to be computerized utilizing Automation testing measures, things to be robotized are; login structures, enlistment structures, and where quantities of clients access the Software all the while can be mechanized. Also, all GUI things, associations with data sets, field approvals and a lot more can be proficiently tried consequently as opposed to physically.

WHY AUTOMATION TESTING IS SIGNIFICANT?

Assume any product has thought of new deliveries and bug fixes, at that point how might you guarantee that the newly delivered programming with bug fixes has not presented any new bug in past working usefulness? So, it’s smarter to test the product with old functionalities as well. It is hard to test physically all functionalities of the product each time with the expansion of some bug fixes or new functionalities. In this way, it is smarter to test programming each time via Automation testing procedure utilizing Automation Tool proficiently and adequately. It is viable as far as cost, assets, time, and so forth

Performing Automation testing at the hour of loads of relapse work

A web application where a large number of clients access the application at the same time. It is consistently hard to believe that how might you test such an application and how to make those numerous clients physically and all the while. Thus, it is smarter to go for Automation testing.

BASIC STEPS TO CONTINUE IN AUTOMATION TESTING:

There are bunches of supportive instruments to compose Automation scripts, prior to utilizing those applications, it’s smarter to distinguish the interaction which can be utilized to automize the testing,

• Identify regions within programming to Automate
• Choose the proper device for test automation
• Write test scripts
• Develop test suits
• Execute test scripts
• Build result reports
• Find potential bugs or execution issue

ADVANTAGES OF TEST AUTOMATION

• Increase testing inclusion
• Reduction of tedious work
• Increase efficiency
• Saves funds on manual testing
• Increases programming quality
• Reduces testing time
• Support different applications
• Greater consistency

CONSTRAINTS OF TEST AUTOMATION

In certain circumstances where Automation testing is significant, however the amount it is agreeable that much it is unsafe as well. So that, assuming you chose to do Automation testing, consider following situations first,

*Beginning expense for Automation is high –

Any enormous venture requires quantities of analysers, employing a number of manual analysers are truly practical, hence you can pick Automation testing. Automation cost is more for a beginning arrangement like, automation device buying cost, preparing and upkeep of test scripts cost is high. Due to this explanation, a few organizations are stressed of taking the choice to mechanize their work. They believe that, on the off chance that they go through heaps of cash in the underlying stage and will not get adequate devices to satisfy Automation prerequisite then it is only a deficiency of cash.

*Automation is not 100% –

Automation testing can’t be 100% and don’t think about that. Clearly, you have regions like execution testing, relapse testing, and burden/stress testing where you can have the extent of coming to approach to 100% Automation. Territories like User interface, documentation, establishment, similarity, and recuperation where testing should be done physically.

*Try not to Automize unfixed UI –

Be cautious prior to Automating UI. On the off chance that UI is evolving consistently, cost related to script support will be high. Essential UI Automation is sufficient in such cases.

With changing times, the one industry which is continuously growing and changing is I.T industry. And the need of the changing world from this industry is to deliver, quality product or software solution, along with fast paced development and quicker time to market. Whether, it is an organization out sourcing their software solution work to a service-based I.T company, or a product-based I.T company developing their own product, everybody wants to remain ahead from their competitor, keeping intact the quality of the product.

One way of achieving all these aspects of fast-delivery and quality maintenance, is to incorporate automation, wherever possible, so that the software engineers can focus more on developing effective software designs.

That’s when DevOps comes into picture.

As you can figure out, DevOps is a combination of 2 words, Development & Operations, and bridges the gap between development and operations teams, which was the main barrier in fast-paced development of quality software.

So, DevOps can be termed as, set of practices that works to automate and integrate the processes between software development and IT teams, so they can build, test and release software faster and more reliably. DevOps can be divided into phases, each phase representing the process, capabilities and tools needed for development and operations.

The lifecycle includes phases to plan, build, continuously integrate and deploy (CI/CD), monitor, operate, and respond to continuous feedback.

Throughout each phase, teams collaborate and communicate to maintain alignment, velocity and quality. Hence, there’s no harm in saying, DevOps isn’t any single person’s job. It’s everyone’s job.

DevOps includes a range of services and tools corresponding to those services, under its umbrella, and there are quite a few prominent organizations which integrate these services, one of which is GRhombus, based out in USA, Netherlands and India.

GRhombus DevOps Services & tools

GRhombus consists of more than 20 such specialized tools in their arsenal to cater below DevOps services –

1. Agile Planning –

The process of effective and on time product delivery starts with proper planning. And Agile Methodology plays a vital role in the same. As part of this methodology, work items are compartmentalized into short modules and iterations, based on priority of the work, efforts required to complete the task, its dependency on other work items and availability of required engineers to achieve the same. Considering all such points, high level objective is drawn out to achieve. At GRhombus, this is achieved via, Jira Administration. Jira is the tool, which is used to keep a track of status and tasks of the project management life cycle.

2. Continuous Integration –

Continuous Integration (CI) is a development practice, where developers integrate code into shared repository frequently, preferably several times a day. This continuous integration helps to quickly identify if new code changes are affecting any other code changes and to integrate them effectively and seamlessly. Each integration is verified by an automated build and automated tests. In short, CI doesn’t get rid of bugs, but it does make them dramatically easier to find and remove.

The tools which can be used to maintain that central repository are Git, Bitbucket etc. While CI tools used for automated builds and tests includes, Jenkins, Travis etc.

3. Version Controlling –

Version controlling helps to keep track of every change that’s made to the project over time and makes a note of when the changes were made, what the changes were, and who made them, providing invaluable context for whoever views these changes. Thus, providing effective maintenance of the project code.

Version control systems also support the ability to make branches of the main project, to allow for changes to be tested without altering the original project. Once these branches have been successfully tested and verified, they can then be merged with main project branch.

The most common tool used for version controlling is GitHub.

4. Code Quality Inspection –

We talked about this in brief, when we talked about automated tests, as part of CI. When developers push their code changes to tool like GitHub, other developers do manual code reviews to detect and eliminate the defects, as early as possible.

If anything misses out as part of manual reviews, automated tests counters for the same. Tools like Jenkins and Travis helps to achieve the same.

5. Continuous Deployment –

Once the coding aspect of task is done, changes are pushed for reviews, have passed the manual review process and also have passed through automated tests, it’s time to deploy the changes on the testing environments for QAs to test and make it production ready.

This task of deploying the code for QAs and making it production ready is done, as part of Continuous Deployment.

Jenkins is a CI/CD tool, which can perform task of CD along with CI and Fastlane is another tool which can perform CD.

6. Continuous Delivery –

Till continuous deployment, we have made our changes production ready, ready to be handed over to the users, by making them go through various tests and reviews and integrations.

The seamless delivery of changes is it new features, configuration changes, bug fixes and experiments, in the production and to the users is done as part of continuous delivery.

The goal of continuous delivery is to make deployments to production, a routine affair, which can be performed on demand effectively.

This can only be achieved, if all the tasks till continuous deployment are done effectively. Tools like GitLab can perform this task effectively.

7. Continuous Monitoring –

Continuous Monitoring is the last step in DevOps pipeline. Once the changes are deployed to production and available for users to use, continuous monitoring helps to notify in the event of specific issues arising in the production environment. It provides feedback on what is going wrong, which allows the relevant people to work on necessary fixes as soon as possible.

Tools like New Relic, Application Insights are used for continuous monitoring.

Internet is the most widely used resource and has been serving as the most important part of everybody’s day to day life. In general, Ipv4 and Ipv6 are acting as the backbone of the internet resources. Since, internet is highly social, there are chances of making the technical information taken away from the source and also there are high risks of personal information from the particular organization or any individual.

In order to protect the data and personal information, there arises the need of safety measures that helps people to maintain the data securely. Such a safety system is ‘cyber security’. It also plays a vital role by contributing to the personal cyber threats. It may involve the sky rocketing or other threats of attack. Since, all the people in the world use internet and make use of the cyber system to store their data, the cyber criminals can easily make threats to the organization or any individual.

Bringing into light, the role of cyber security into these threats, GRhombus which is the best cyber security service providers in US helps you to maintain the data effectively. GRhombus develops the software that works much efficiently to take care of all the threats that people come across while storing the data and information.

There are a lot of techniques involved to implement the cyber security into any software. GRhombus is the leading cyber security software providers in US and assists in this process with the help of some techniques:

Using malware scanners:

GRhombus builds the best cyber security solutions in UK by using one of the techniques like malware scanners. The leading cyber security software built by the team of experts will try to scan all the files and documents present in the system for viruses. The best software developers will be able to scan the files from malicious code or harmful viruses and this helps any individual or the organization to get rid of the cyber security crisis.

Building the firewalls:

When we build firewalls, we will be able to easily track the hackers, viruses, and worms that are trying to reach and corrupt the system files and information. Over the internet, one can easily steal the personal information and this kind of cybercrimes will not be encouraged. GRhombus, the best cyber security solution providers in UK will be able to outrage the cyber issues that are happening over the internet.

Anti-virus software:

There are certain softwares built by the team of GRhombus software developers and this will help the organization or any individual who’s carrying the personal information get out of this cyber issues. A special program is built by the team of best software developers in UK and this software will help to diagnose the issues properly. This software is nothing but the compilation of software programs that detects all the malicious issues, viruses and worms and at the same time it will help people to take actions against those malicious activities.

Usually the antivirus softwares will contain regular updates along with it, which will enable the program to download some of the profiles of newly occurring virus. This method will be highly helpful to check for the new virus and then a quick antivirus will be made by the best software developers in GRhombus. As far as it is concerned, this antivirus is considered to be the needful thing for all the computers.

Test smarter and not harder – is a slogan of Software Testing and Quality Assurance. While complexity of application increases, it is fair enough to implement test strategy intelligently that reduces time to quality deliverables. Even though we use opensource tools and frameworks such as Selenium, Cucumber and few other licensed tools have their own limitations, when we think through that, it leads to an effective approach ‘Artificial Intelligence (AI)’- a smart and an efficient way.renders initially is

Artificial Intelligence (AI) Tools

Here are some of the popular AI-based test automation tools being used.

• Testim.io
• TensorFlow
• Appvance
• Test.ai
• Functionize

About Machine Learning (ML)

Machine Learning (ML) a subset of AI, is a pattern-recognition technology, it uses patterns identified by ML algorithms to predict future trends or outcomes. ML is powerful to find predictive patterns with large amount of complex information, and alerts on those differences.

Artificial Intelligence (AI) enhances Testing abilities

Artificial Intelligence (AI) is going to change testing in many ways in the coming days without replacing human. Keep reading, you will know other reasons.

UI Validation

Focus of most of the automation test engineers is to test functionality of application and these tests may ignore UI visual validation.

Using image-based testing tools, automated visual validation is still a limitation on color or size of elements. In such cases, testing activity ends up choosing manual verification which is error prone, where AI testing helps perfectly. You can use ML-based visual validation tools to find differences that human testers would most likely miss.

Regression Testing

Regression runs consume a lot of time at each staging test cycle in continuous integration and testing. Instead of running all common patterns for a small change in piece of code, ML lets choosing required set of precision tests to test the code. Moreover, AI tool lets report coverage of tests and risks within the application.

Write Tests And Prepare Data Sets

Spidering is a latest way of writing tests by ML, the newer tools need to be put through the web application automatically that starts crawling the application. As the tool is crawling, it also collects data by taking screen shots of features, downloads rendered HTML of every page, page load time measurements, and so forth. And it continues to run the same steps again and again.

Over the several cycles, it builds up a dataset and trained ML models for the expected patterns of your application.

API Testing

In the absence of UI, test automation is heavily dependent on backend testing through API calls, where ML Algorithms make it easier and faster to achieve quick release cycles.

DevOps And Report Analysis

During test runs, tool compares its current state to all the learnt/collected patterns, and if there is a deviation found, for example, a page that usually does not show JavaScript errors but it shows through test cycles or a script running slower than average, or a visual difference, then ML tool flags that as a potential issue. In some of these cases domain knowledge experts need to verify manually If the flagged issues are valid bugs. This approach of ML tools can reduce time to write test and track the areas of application to test thoroughly, and also the speed at which the application needs to be tested will be faster than the current world of Agile/DevOps based continuous testing.

Tests Recovery

Test automation engineers frequently face a challenge when developer keep changing element properties, that results into test failure. In these situations, ML tool decides from page object relationships and learnt patterns and the tool changes the locators automatically to identify the element.

Finally, AI Needs You.

Many automation engineers are needed not only with domain knowledge to train ML algorithm and test model development, but also who can analyse and understand algorithms, complex data structures and statistics. So, your job is safe. Stop worrying, upgrade AI knowledge requirements and do what you do best – happy test automation!

Author: Srirama Murala, Director, GRhombus Technologies

Who Coined IOT?

Kevin Ashton – Father of Internet of Things, in short IOT. For Kevin Ashton, the co-founder of Auto-Id Center, back in the year 1999, had decided to find out the holes in data about the supply chain that eventually led him to drive the early deployment of RFID chips on inventory.

Asked by the Massachusetts Institute of Technology to start a group — the Auto-ID Center — that would research RFID technology, he found a way to talk about RFID to a less-than-computer-savvy crowd – by coining the phrase the Internet of Things or IoT.

The Internet of things (IoT) is meant for using the Internet to empower computers to sense the world for themselves.

KEVIN —-

What is IOT?

The Internet of things (IoT) was introduced to remove the gap between the physical and digital world.

IoT connects various things or devices such as home appliances, industrial devices, vehicles, medicinal equipment with computers or smart phones through the internet and therefore turns them into smart devices which can sense and communicate with each other without human intervention.

The sensors on these things gathers data and the IoT platforms analyses the digital data and employs mechanism to help decision makers to implement intelligent and cost-effective solutions on their smart devices or things.

IOT Key Components

IOT is essentially an interaction between Internet of things and their purpose to make people’s life better in every walk of life. IOT’s primary purpose is to connect machines, people, and data. Then to enable people to machine and machine to machine Interaction.

In, Internet of people, people share/post information with one another that generates a huge chunk of data/information which is being pumped into the cloud.

In, Internet of things, objects/things are pumping data into the cloud which helps in monitoring the product, control, optimize and eventually automate the product on purpose.

As you can see information and data are being shared into the cloud by both people and things. Internet of things can control a product’s behavior and how we can draw value from them.

This categorizes the product into physical components, smart components, and connectivity components, which are most likely to be remotely controlled by an app.

This eventually impacts the product value altogether and thus it impacts the business and people in their day-to-day livelihood.

IOT – Most Popular Use Case

Tesla car utilizes the IOT feature to send their new software features/updates digitally over the internet to their products.
Tesla used the evergreen design strategy to avoid a Major recall.

Few years back when there were several instances in which the battery cell of the car rubbed against the roads as the car turned corners causing fires.

Instead of sending all the Tesla cars back to the dealers or the mechanic shop, the company sent a software update that automatically raised the clearance of the car chassis where the battery was located.

Tesla’s ever green design saved the company money as well as customer’s time and money that usually hurts by a traditional recall of the product.

IOT – Few Challenges

• Handling the huge chunk of data that gets generated from various devices interconnected with each other within the IOT network.
• Complexity of the multiple systems embedded into IOT network and environment setup is complex and costly.
• Too many Networks, protocols, gateways and device hubs is imaginably involved within the IoT network.
• New challenges arise in upgrade testing when different platforms are part of IOT system which could eventually lead to security and compatibility issues.
• Data security and cyber-attacks in today’s evolving times are certainly a challenge.
• Effective maintenance of IOT Test automation framework in a complex embedded system is a challenge on its own.

Author: Krishna Kumar, Technical Manager, GRhombus Technologies

The primary work of mobile pentester is static and dynamic analysis of applications using some predefined tools like Jd-GUI or Frida and Objection. In this blog we will cover some concepts of dynamic analysis of android apps.
Dynamic analysis means interpreting or modifying the apps in runtime. In this blog we will cover the tool called Objection for Dynamic analysis of android app called diva-beta.apk and we will use Non-rooted android device POCO F1.

Link for the app will be provided below:-

Diva-beta. Apk

What is Objection?

Objection is a tool using for Dynamic analysis of android based application. It allow us to assess mobile applications and their security posture without rooting and Jail breaking the mobile device. It is built on the top of the Frida which is also a great tool for dynamic analysis. Most of the Pentester Bug hunter using this tools now a days to perform Dynamic Application Analysis.
To start with Dynamic analysis of application, the first step in this process is to setup tool in your operating systems like Ubuntu, Kali Linux etc. we are going to cover all the steps to setup tool in Kali Linux, below are the steps for setting up the tool.

Step 1:   Installation of Objection in Linux

We need to install Python3 and pip3, you can install the python and pip3 repo in Kali linux by using below syntaxes.

Sudo apt-get install python3                   # it will install the python repo in you Kali
Sudo apt-get install pip3                          # it will install the pip3 repo in your Kali

(Or) Sudo apt-get install python3-pip
After installing python and pip repo, the next step is to install Objection.
Note:-If you have Objection already installed then you can use pip3 install –upgrade objection for upgrading the version of Objection.

Pip3 install objection
Now we have to install some utilities for Objection. You just need run these commands.

Sudo apt install Zipalign
Sudo apt install aapt

Note: Zipalign is a tool for optimizing app and aapt turns your sdk resources in binary.

Step 2:   Apktool installation:

Before going further, we can also setup Apktool, so below are steps available to setup process.

Download Linux wrapper script (Right click, Save Link As apktool)
https://raw.githubusercontent.com/iBotPeaches/Apktool/master/scripts/linux/apktool

Download apktool-2 (find newest here)
https://bitbucket.org/iBotPeaches/apktool/downloads/
After downloading the latest version, then rename downloaded jar to apktool.jar.

Next step is to move both files (apktool.jar & apktool) to location /usr/local/bin (root access required)
Make sure both files are executable if not then change the permissions using chmod (chmod +x).
Try running apktool via cli.

Step3: Installation of Jarsigner or Apksigner

Next step is to setup either Jarsigner or Apksigner in Kali linux. Why these tools are required.
The Jarsigner tool is used to sign Java Archive (JAR) files, and to verify the signatures and integrity of signed JAR files. The JAR feature enables the packaging of class files, images, sounds, and other digital data in a single file for faster and easier distribution. A tool named jar enables developers to produce JAR files. (Technically, any ZIP file can also be considered a JAR file, although when created by the jar command or processed by the Jarsigner command, JAR files also contain a META-INF/MANIFEST.MF file.)

To install Jarsigner below are the commands.

Sudo apt-get install Jarsigner or sudo apt-get install apksigner

What is patching and why do we require our apps to get patched?
Patching is a process through which, we are injecting Frida dylib library in our application which is apk file and install in our device i.e. POCO F1 (this device is using for this analysis).

Objection is built on top of Frida and objection is working on the basis of client-server model. So whenever we are patching applications we are injecting Frida dylib library into our app so that it will act as Frida server and our linux machine will act as client.

Commands for patching application.

In the terminal use below commands:

Objection –help
Objection patchapk -s /home/kali/Downloads/diva-beta.apk -a arm64-v8a

-s         : stands for source

-a         : stands for architecture

Note:-Objection will automatically detect architecture. In case if it is not detecting architecture we have to mention -a as mentioned. Objection is case sensitive.Dont use capital O so use small o.

Installation of patchapk

After patching a new file diva-beta.objection.apk is created in /home/kali/Downloads.

For installing patched apk “diva-beta.objection.apk” we have to run command:
adb install diva-beta.objection.apk

Note:-usb debugging should be enabled in your device for installing apps from adb. Usb debugging is in developed option. To enable developer option simply click on Build no or check device manual or search for your model no in any search engine.

For installation of adb here is link:
https://www.xda-developers.com/install-adb-windows-macos-linux/

Procedure after patching

Now the next step is to launch your patched diva beta.apk in our mobile device.

In this app we will try to trace hardcode part 1 classes and methods

Commencement of Objection in linux
For connecting our objection linux machine i.e. client to our server that is our mobile device POCO F1, we have to simply type the following command in you kali terminal for connecting client to server (patched apk).

objection explore

Hooking of classes and methods

For hooking classes and methods first we have to search the class and methods related to hardcode information. Here in app we will try to find it using we will try to find keyword called hardcode by using objection command Android hooking search class hardcode.

Now look at classes we found three classes. The class we will hook here is jakhar.aseem.diva.HardcodeActivity because it look familiar as per our need. Now we will watch for this method using Android hooking watch class jakhar.aseem.diva.HardcodeActivity

Now we found that whenever we click on access button we can find method of classes which are invoking at runtime. There are 3 methods invoking but one methods looks which we have some importance is jakhar.assem.diva.HardcodeActivity.access(android.view.view)

Now we found name of methods now we will try to hook these method using Android hooking watch class_methods jakhar.assem.diva.HardcodeActivity.access. You will get result like these

Note: we can use Android hooking watch classes Jakhar.aseem.diva.HardcodeActivity –dump-args –dump-return if you want return value and arguments.

Setting value using objection
We don’t have any method in diva-beta.apk but assume if we have is device rooted Boolean value in our class. Let us assume we have jakhar.assem.diva.usermainactivity class and jakhar.assem.diva.usermainactivity.is device rooted.

Now we want to try to set value to false using objection. Why this is required? Because sometimes apps are not running because of root functionality in phone, so what we can do here is to just bypass root detection for app by using objection. Android set return value jakhar.assem.diva.usermainactivity.is device rooted now false.

Final words
As we come to end of our journey assuming you like this blog. Objection is a great tool for dynamic analysis especially in case of when the code is obfuscated or not clear. Overall Objection is great tool for Dynamic analysis.

Troubleshoot
While performing the patching process, if you are facing trouble or getting error, so below is the error which you can get while doing this process. So to resolve issue you can do below steps.

If your Objection is showing temporary file error then the command we have to run is:-

objection patchapk -s /home/kali/Downloads/diva-beta.apk –skip-resources -k -n

Note: in replace of –skip-resources we can use –D, -k stands for “not cleaning up temp files” and -n stands for ignore native libs

Author: Sujay Chaurasia, Director, Cybersecurity, Development and DevOps, GRhombus Technologies

It is You!!!  You are already facing the Corona virus. Do you know Corona is already your invisible friend? Do you know when it turns into your enemy? Be mindful about your feelings and emotions. Emotions are particularly important to keep mind, body, and soul together. Corona is attached with soul and its energy. When you eat tasty food or listen to good music – body gets it through mind and mind makes soul happy, and there by, cells in the human body remain energetic without any disturbance.

Why Corona attacks you?

When you are negative minded and leading a stressful, depressive, and sorrowful life with unhealthy food habit, mind receives negative emotions that disturbs soul’s energy. Now the invisible friend, Corona becomes your enemy to fight your body cells and damages cells, consequently organs gets damaged which in turn leads to death for the body, not for the soul.

Keep Away Corona with Mantra and Sankalpa

So to overcome or win over Corona follow this simple mantra – “Keep Inner Peace” – practice to think positive, be happy, have clean habits, love your neighbor, pay gratitude for whatever you receive, observe mother nature and be sensitive to her, satisfy with what you have today and lead happy life, laugh louder, lead trust worthy friendship, have permitted and healthy sex life, mindful about your body and breath, do not take bad news deep into your mind, do not utter negative words, be open to learn at any age. We born out of mother nature with five elements: Earth, Water, Fire, Air and Ether. All these are perfectly related a body: flesh and bones of body is to the Earth, body has 70% Water, Agni (Fire) is to Internal Energy in the body, Air is that we breath sustains life in the body, Ether is the space occupies around the body. When we are from nature, and living in this nature, we are not different from nature. Be in sync with the nature and its cycles through Body, Mind, and Soul. Eventually that develops egoless, positive life within you. In such state you will get what you want from this universe upon just a true wish (dharmic sankalpa).  That is the key to Successful life!

Author: Srirama Murala, Director, GRhombus Technologies

Yes! It is.
Robotic Process Automation is a simple “software” or “robot” or “bot” that takes set of instructions to automate human-computer-based tasks, for example copying data or moving files from source to another system, especially into legacy system.

Engaging humans to do the robotic work? Why don’t you go for Robotic Process Automation?

Few examples of potential candidate for RPA :

1. If accounts department receives invoices from vendors over email frequently and needs frequent updation of the required fields into SAP FI accounts payable system.
2. When a customer support team receives huge number of emails on daily basis and replying them takes huge time & efforts.
3. A product sales analyst and his team regularly web scrapes data from different eCommerce websites and copies to excel sheet, and then imports into analytics database to identify the trends.

Ever since computers are invented, out of many day-to-day repetitive tasks computers are performing to sustain business processes like HR onboarding, finance department making invoices and payments, IT user provisioning etc. where all these business functions attract RPA.

Goods purchased online when returned, processing consumes manual effort, time and money which is a costly endeavor. When a company implements RPA that can manage goods returns without adding to the cost or causing a delay. Also, it saves time and reduces errors in the process of sending a message confirming receipt of the return, updating the inventory system, making the payment adjustment to the customer, invoice processing, ensuring that the internal billing system is updated.

Company staff who is handling repetitive tasks, mundane tasks, bridge system and data integration can automate tasks by providing simple instructions like commands to RPA robot to let their task done, so that staff can take care of other tasks that results job satisfaction.

Even though RPA is complex to implement, it is a viable solution for organizations and when it is implemented properly, with a process having robots and relevant people in place shows successful results by reducing the cost to the company.

If Artificial Intelligence (AI) / Machine Learning (ML) implemented with RPA, ML improves robot performance and decision making and hence results in ROI.

The sectors attract RPA are:

Supply Chain Management (SCM), Customer Service, Accounting, Financial services, Health Care, Hospitality, Government, Human Resources, Insurance, e-Commerce, Retail, Transportation, Communication service providers, Media and Entertainment, Energy and Utilities, Manufacturing.

Gartner is the world’s leading research and advisory company, for example, has predicted that 73% of corporate controllers will implement some form of RPA in their finance departments by 2020.

Commercial tools with free edition or trail version	Free Open Source Tools
Blue Prism, UiPath, Automation Anywhere, WorkFusion, PegaSystems	TagUI, Taskt (sharpRPA)

Author: Srirama Murala, Director, GRhombus Technologies