{"id":46714021,"url":"https://github.com/actuator/pslip","last_synced_at":"2026-03-09T10:01:39.380Z","repository":{"id":273296658,"uuid":"903860968","full_name":"actuator/pSlip","owner":"actuator","description":"pSlip is a static analysis tool kit designed to find potentially vulnerable escalation paths by analyzing exported components, intent filters, provider permissions, tapjacking vectors, and cryptographic misuse.","archived":false,"fork":false,"pushed_at":"2025-12-11T23:05:25.000Z","size":5517,"stargazers_count":23,"open_issues_count":0,"forks_count":2,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-12-13T00:42:40.936Z","etag":null,"topics":["android","application-security","escalate-privilages","exploitation-framework","hardcoded-credentials","hardcoded-secrets","intent-injection","mobile","mobile-security-testing","pentesting","pslip","python","static-analysis","vulnerability-scanners"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/actuator.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2024-12-15T18:36:33.000Z","updated_at":"2025-12-11T23:04:05.000Z","dependencies_parsed_at":null,"dependency_job_id":"9d2f74cb-8771-4529-8c22-62b7f677bf8a","html_url":"https://github.com/actuator/pSlip","commit_stats":null,"previous_names":["actuator/pslip"],"tags_count":12,"template":false,"template_full_name":null,"purl":"pkg:github/actuator/pSlip","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/actuator%2FpSlip","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/actuator%2FpSlip/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/actuator%2FpSlip/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/actuator%2FpSlip/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/actuator","download_url":"https://codeload.github.com/actuator/pSlip/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/actuator%2FpSlip/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":30290905,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-03-09T02:57:19.223Z","status":"ssl_error","status_checked_at":"2026-03-09T02:56:26.373Z","response_time":61,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["android","application-security","escalate-privilages","exploitation-framework","hardcoded-credentials","hardcoded-secrets","intent-injection","mobile","mobile-security-testing","pentesting","pslip","python","static-analysis","vulnerability-scanners"],"created_at":"2026-03-09T10:01:37.027Z","updated_at":"2026-03-09T10:01:39.366Z","avatar_url":"https://github.com/actuator.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"\n[![License](http://img.shields.io/:license-apache-blue.svg)](http://www.apache.org/licenses/LICENSE-2.0.html)\n[![GitHub release (latest by date)](https://img.shields.io/github/v/release/actuator/pSlip)](https://github.com/actuator/pSlip/releases)\n[![GitHub stars](https://img.shields.io/github/stars/actuator/pSlip)](https://github.com/actuator/pSlip/stargazers)\n[![GitHub forks](https://img.shields.io/github/forks/actuator/pSlip)](https://github.com/actuator/pSlip/network/members)\n[![GitHub contributors](https://img.shields.io/github/contributors/actuator/pSlip)](https://github.com/actuator/pSlip/graphs/contributors)\n\n\u003cimg src=\"https://github.com/user-attachments/assets/53ff5d6f-c036-4f91-b993-84d0972a04b0\" alt=\"pSlip banner\" /\u003e\n\n---\n\n## What’s New (v1.1.3)\n\n### **Modernized HTML Report**\nA new flat, responsive layout improves readability, spacing, and dark-mode rendering.  \nThe Findings Index now adapts automatically between a desktop table and mobile card layout.\n\n### **Category Summaries**\nReports now include summaries for:\n**Hardening**, **Component Exposure**, **Crypto**, **JavaScript Injection**,  \n**URL Redirect**, **Permissions**, and **Tapjacking**.\n\n### **Updated Severity Model (Android 15)**\nSeverity weights now reflect realistic exploitability under modern Android.  \nTapjacking is treated as **Informational** unless paired with sensitive UI actions.\n\n### **Cleaner Detail Sections**\nImproved formatting for component names, ADB PoC commands, severity chips,  \nand long package paths.\n\n### **Unified CLI (Simpler Flags!)**\nScanning behavior has been simplified into two modes:\n\n- `-all` → Full analysis  \n- `-allsafe` → Full analysis without AES/JADX decompilation  \n\nLegacy toggles (`-p`, `-perm`, `-js`, `-call`, `-aes`, `-taptrap`) no longer appear  \nand no longer need to be managed individually.\n\n---\n\n# pSlip\n\n**pSlip** detects Android applications vulnerable to **Permission-Slip / Confused-Deputy** paths by analyzing:\n\n- exported Activities, Services, BroadcastReceivers, Providers  \n- intent filters and unsafe CALL/VIEW handlers  \n- JavaScript-enabled WebViews and URL schemes  \n- manifest hardening controls  \n- unsafe permissions and custom-role exposure  \n- tapjacking/taptrap surface area  \n- cryptographic misuse (AES/IV/key/ECB detection)\n\npSlip is designed for **application-security testing**, **CI/CD pipelines**, and **bulk APK triage**.\n\n---\n\n## Highlights\n\n### Exported Component Triage\n- CALL actions  \n- VIEW + `javascript:` handlers  \n- Wildcard deep links  \n- Weak or normal-protection custom permissions\n\n### Crypto \u0026 Code Triage\n- Hardcoded AES/DES/IV patterns  \n- Unsafe mode detection (ECB, static IVs, insecure PRNG)\n\n### UI / Tapjacking Detection\n- Layout XML parsing  \n- Compose tree heuristics  \n- Sensitive-action token scoring\n\n### Reporting\n- HTML and JSON output  \n- ADB PoC generation  \n- Severity + confidence scoring (0–100)\n\n---\n\n\u003cimg width=\"892\" height=\"403\" alt=\"image\" src=\"https://github.com/user-attachments/assets/9f68e3a7-8d61-456e-b04f-a7191c065add\" /\u003e\n\n---\n\n## Install\n\n```bash\ngit clone https://github.com/actuator/pSlip.git\ncd pSlip\nsudo apt install apktool jadx\n````\n\n---\n\n## Usage\n\n```bash\n# Directory sweep (full scan)\npython pSlip.py . -all -html demo.html -json demo.json\n\n# Fast sweep (skip AES/JADX)\npython pSlip.py path/to/apks -allsafe -html report.htm\n```\n\n### Supported Flags\n\n```\n-all                   Full analysis (includes AES/JADX)\n-allsafe               Disable AES/JADX for speed/stability\n-html \u003cfile\u003e           Write HTML report\n-json \u003cfile\u003e           Write JSON report\n-aes-timeout \u003cminutes\u003e Time limit for AES/JADX work (default: 5)\n```\n\n---\n\n## Tapjacking Signals\n\n![pSlipVideo2](https://github.com/user-attachments/assets/f6481a73-11f9-4989-b4c0-b0eca4e780f1)\n\n\nTokens used for semantic scoring:\n\n```\nlogin | auth | verify | pay | checkout | approve\npassword | otp | pin | confirm | secure\nsubmit | card | transfer | send\n```\n\n---\n\n## Output\n\n### **HTML Output**\n\n* Category summaries (Hardening, Exposure, Crypto, JS Injection, URL Redirect, Permissions, Tapjacking)\n* Responsive index (table on desktop, cards on mobile)\n* Per-app findings with severity, confidence, and ADB PoC actions\n\n### **JSON Output**\n\n* Structured dataset for automation or SIEM ingestion\n\n\u003cimg src=\"https://github.com/user-attachments/assets/036ab34d-4f37-43fa-934b-eb7c528843fd\" /\u003e\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Factuator%2Fpslip","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Factuator%2Fpslip","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Factuator%2Fpslip/lists"}