Question 1

How to install Hooker on Ubuntu or Debian?

Accepted Answer

Follow the install.sh script in the root directory, but ensure you have Debian 64-bit, Python 2.7, ElasticSearch 1.7, and Android SDK set up first, as per the Getting Started guide. Be prepared for manual tweaks due to system incompatibilities.

Question 2

Hooker vs Frida for Android dynamic analysis?

Accepted Answer

Hooker offers automated tools and Kibana integration for security research but is limited to Android 4.1-4.2. Frida supports modern Android versions and is more flexible but may require custom scripting for similar automation.

Question 3

Can Hooker work on Android 10 or newer?

Accepted Answer

No, Hooker explicitly states it only works with Android 4.1 and 4.2 due to its reliance on the Substrate framework. There's no support for higher versions without significant modifications.

Question 4

How to visualize data with Kibana in Hooker?

Accepted Answer

After running an experiment, import the kibana-export.json file from tools/kibana-dashboard into Kibana's Settings -> Objects -> Import section, as detailed in the README's Kibana integration steps.

Question 5

What are the main dependencies for running Hooker?

Accepted Answer

You need Python 2.7, ElasticSearch 1.7, Kibana 4.1, Android SDK, androguard 1.9, and a Debian 64-bit system, all specified in the installation instructions. Missing any can cause setup failures.

Question 6

Is Hooker good for analyzing real phones?

Accepted Answer

It's possible but requires extra configuration per the tools/realDevice/README.md. The tool is primarily designed for emulators, so real device usage involves more manual effort and potential issues.

Android Hooker

What is Android Hooker?

Overview

Use Cases

Best For

Related Projects

Found a gem we're missing?

Not Ideal For

Pros & Cons

Pros

Cons

Frequently Asked Questions