https://github.com/dstmath/inotifywait-for-Android.git 工具来进行文件监控,它是利用linux下inotify机制对文件系统进行监控的,我们可以利用它来监控某款APP的文件操作行为,比起利用hook机制来监控文件系统.
(1)
git clone https://github.com/dstmath/inotifywait-for-Android.git
cd inotifywait-for-Android
ndk-build
[armeabi] Compile thumb : inotifywait <= wrap_inotifywait.c
[armeabi] Compile thumb : inotifywait <= common.c
[armeabi] Compile thumb : inotifywait <= inotifytools.c
In file included from jni/libinotifytools/inotifytools.c:31:0:
jni/libinotifytools/../regex/regex.h:367:40: warning: declaration does not declare anything
unsigned long int __REPB_PREFIX(used);
^
[armeabi] Compile thumb : inotifywait <= redblack.c
[armeabi] Executable : inotifywait
[armeabi] Install : inotifywait => libs/armeabi/inot