SnoopSnitch

For Android security patch analysis, the level of permissions requested are:

• ACCESS_NETWORK_STATE: To check for available network
• INTERNET: To download patch tests and upload test results
• RECEIVE_BOOT_COMPLETED: To check whether build version has changed since last test

For mobile network security tests, the level of permissions requested are:

• ACCESS_FINE_LOCATION / ACCESS_COARSE_LOCATION: Allow you to record your location when IMSI catchers and security events are detected
• ACCESS_NETWORK_STATE: Is used to check for available network so that up or downloads can proceed
• ACCESS_SUPERUSER: To use the non API supported Qualcomm diagnosis interface to capture radio data, you need root access. See below.
• CALL_PHONE/ SEND_SMS / RECEIVE_SMS: Needed to make the test calls used to generate the network traffic to be analyzed
• GET_TASKS: Retrieve state of helper processes interacting with diagnostic interface
• INTERNET: Is used to download new data from gsmmap.org and to upload radio traces and debug logs upon user request
• READ/WRITE_EXTERNAL_STORAGE: To allow saving debug/trace logs to your SD card
• READ_PHONE_STATE: Used to detect what kind of network you are currently using (GSM,UMTS,LTE etc)
• RECEIVE_BOOT_COMPLETED: To start app automatically when phone is restarted
• GET_TASKS: Retrieve state of helper processes interacting with diagnostic interface
• WAKE_LOCK: Stop phone from falling asleep during long-running analysis steps

In addition, the mobile network security tests require root privileges, which are only used to access the /dev/diag interface from which baseband information is read.