Android Security

A static code analyzer that detects and reports potential malicious behaviors in Android applications.

A simple framework to extract actionable data like C&C servers and phone numbers from Android malware samples.

A machine learning tool for quantitative risk analysis of Android apps by analyzing declared and actual permission usage.

A secure, extensible command-line Android APK vulnerability analyzer written in Rust for automated security testing.

A standalone binary inspection tool for Android developers to browse executables and analyze bytecode.

A cross-platform static code analysis tool for mobile applications (APK/IPA) to find security vulnerabilities like hardcoded credentials and API keys.

A static analysis tool for Android applications that detects security vulnerabilities through inter-procedure and intra-procedure analysis.

An obfuscation-neglect Android malware scoring system that analyzes APKs for malicious behavior patterns.

A Python wrapper for Android APK decompilation that simplifies extracting Java source code with multiple backend tools.

A tool to scan APK files for URIs, endpoints, secrets, and sensitive data patterns.

A Django web application for static security analysis (SAST) and malware detection in Android APKs.

A static code analysis tool for Kotlin that identifies code smells and enforces coding standards.

An efficient Android vulnerability scanner that finds security issues and missing best practices in APK files.

An on-path blackbox network traffic security testing tool for detecting weak TLS/SSL connections and cleartext traffic.

A virtual machine for Android application security assessment, reverse engineering, and malware analysis.

A runtime mobile application analysis toolkit with a Web GUI, powered by Frida, for dynamic function hooking and intercepting.

An automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis, and security assessment framework.

Dynamic analysis tool for Android applications that monitors runtime behavior, detects information leaks, and visualizes app activity.

A security testing framework for Android that identifies vulnerabilities by interacting with apps, IPC endpoints, and the OS.

An Xposed module for dynamic analysis of Android apps via API hooks, unexported activity launching, and runtime inspection.

An open-source toolkit for automated dynamic analysis of Android applications by intercepting and modifying API calls.

A dynamic Java code instrumentation SDK for Android apps to profile runtime, examine coverage, and track high-risk behaviors without source code.

A dynamic binary analysis framework based on QEMU for whole-system taint analysis and security research.

An extension of Cuckoo Sandbox that adds automated Android malware analysis capabilities for executing and analyzing Android applications.

A forensic tool for dumping memory from Android devices requiring root access.

Loadable kernel modules for Android reversing and debugging on controlled systems and emulators.

A pre-configured Ubuntu-based virtual machine for mobile application security testing and malware analysis.

A comprehensive mobile application reverse engineering and analysis framework for security testing against OWASP mobile threats.

A configurable sandbox for dynamic analysis of Android malware using Frida hooks to bypass anti-emulation techniques.

A framework for automated extraction of static and dynamic features from Android APKs for malware detection.

A web interface powered by FRIDA for runtime manipulation, analysis, and security testing of Android and iOS applications.

A Python tool using Frida to monitor selected APIs in Android apps during execution, capturing calls, parameters, and return values.

A Python-based GUI tool for analyzing Android applications locally, including decompilation, logcat monitoring, and security testing.

A tool for real-time SSL/TLS key extraction and traffic decryption to simplify encrypted network analysis for security researchers.

A Python framework for automating Mobile Application Penetration Testing (MAPT) activities and interacting with Android devices.

A Python-based tool for exploiting and managing Android devices via ADB with capabilities like screen recording, data extraction, and remote control.

A Burp Suite extension that bridges to Frida, enabling dynamic analysis and manipulation of mobile app traffic using the app's own code.

A Python-based toolkit that automates Android penetration testing workflows by bundling and managing essential security tools.

A forensic software utility for read-only, non-destructive data acquisition and analysis from Android smartphones.

An assembler/disassembler for Android's dex format, enabling low-level manipulation of Dalvik bytecode.

A Python toolkit for reverse engineering, analyzing, and pentesting Android applications (APK, DEX, resources).

A framework for exploiting Android devices and applications for security testing and vulnerability assessment.

Android security testing tool that bypasses signature and permission checks for inter-process communications.

A Cydia Substrate tool that makes all Android applications debuggable on rooted devices.

A set of tools for converting Android .dex files to Java .class files and working with Dalvik bytecode.

A tool for translating Dalvik bytecode to Java bytecode, enabling Java analysis tools to work with Android applications.

A blackbox security profiling tool for Android that hooks and analyzes security-sensitive APIs at runtime.

A standalone graphical utility that displays Java source code from compiled CLASS files.

A Java bytecode assembler, disassembler, and decompiler designed to handle obfuscated code and support the latest JVM specifications.

An analytical decompiler that converts Java bytecode back into readable Java source code, used in IntelliJ IDEA.

A binary instrumentation framework for analyzing and modifying Android app Dalvik bytecode.

A generic Android deobfuscator that uses virtual execution to simplify obfuscated code for human analysis.

A lightweight Java/Android reverse engineering suite with decompilers, disassemblers, and advanced analysis tools.

A libre, Unix-like reverse engineering framework and command-line toolset for analyzing, debugging, and modifying binaries.

A command line and GUI tool for decompiling Android Dex and APK files into readable Java source code.

A full-featured, multi-architecture debugger built on PyQt5 and Frida for reverse engineering and security analysis.

Interactive reverse engineering tool for Android applications, written in C/C++ for performance.

A CLI tool that automatically patches Android APK files to bypass HTTPS security for traffic inspection.

A web-based tool for browsing mobile app sandboxes and previewing SQLite databases, images, and other files.

A modular, black-box obfuscation tool for Android apps (APK/AAB) that works without source code.

A forensic toolkit for gathering and analyzing traces on Android and iOS devices to identify potential spyware compromise.

A tool for executing arbitrary code on Android by patching OAT files while preserving the original app signature.

A Python-based hacking tool for remotely exploiting Android devices via ADB and Metasploit to gain Meterpreter sessions.

A VS Code extension that integrates Android reverse-engineering tools for APK analysis, modification, and debugging.