Question 1

How does APKLeaks compare to MobSF for Android security scanning?

Accepted Answer

APKLeaks is focused on extracting secrets and endpoints using regex patterns, making it faster for targeted scans, while MobSF offers a broader suite including dynamic analysis and more vulnerability checks. Choose APKLeaks for quick secret hunting, but MobSF for comprehensive assessments.

Question 2

How to add custom patterns to APKLeaks?

Accepted Answer

Create a JSON file with your regex rules, then run APKLeaks with the -p argument, e.g., 'apkleaks -f file.apk -p custom-rules.json'. This overrides the default patterns in regexes.json for customized searches.

Question 3

Does APKLeaks work on obfuscated APKs?

Accepted Answer

It relies on jadx for decompilation, which has basic deobfuscation features; you can use the -a argument to pass jadx options like '--deobf', but advanced obfuscation may reduce effectiveness and require manual intervention.

Question 4

How accurate is APKLeaks in finding secrets?

Accepted Answer

Accuracy varies based on regex patterns; it detects common formats well but can miss unconventional secrets or produce false positives. Custom patterns improve precision for specific use cases.

Question 5

Can APKLeaks be integrated into CI/CD pipelines?

Accepted Answer

Yes, with Docker support and JSON output, it can be embedded in CI/CD for automated scans. For instance, run it in a container and parse results to flag security issues in build processes.

Question 6

What are common false positives with APKLeaks?

Accepted Answer

False positives often include strings matching regex patterns but not actual secrets, such as placeholder text or commented code. Tuning custom patterns and reviewing outputs can mitigate this.

APKLeaks

What is APKLeaks?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions