Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

Awesome-Android-Reverse-Engineering

A curated list of awesome Android Reverse Engineering training, resources, and tools.
https://github.com/user1342/Awesome-Android-Reverse-Engineering

Last synced: 1 day ago
JSON representation

  • Resources

  • Tools

    • Dynamic Analysis Tools

      • Wireshark - Open-source network protocol analyzer.
      • ☆ Frida - Dynamic instrumentation toolkit for runtime manipulation.
      • ☆ Burp Suite - Commercial tool for analyzing network traffic of Android apps.
      • Drozer - An open-source framework for Android security testing that provides a comprehensive set of tools for dynamic analysis, including intercepting, modifying, and analysing app traffic.
      • jtrace - strace for Android - for tracing system-level calls including Binder.
      • sesearch - Command line tool for querying SELinux policies.
      • ☆ Burp Suite - A popular commercial web security testing tool that can be used for analysing network traffic of Android apps for potential security vulnerabilities.
      • Wireshark - A widely used open-source network protocol analyzer that can capture, analyse, and dissect network traffic generated by Android apps for security analysis.
      • SSLsplit - An open-source tool for intercepting and manipulating SSL/TLS encrypted traffic, which can be used for analysing SSL/TLS communication in Android apps.
      • MITMProxy - An open-source man-in-the-middle proxy that allows for intercepting and analysing network traffic generated by Android apps for security testing and analysis.
      • ☆ Frida - A dynamic instrumentation toolkit for Android apps that allows for runtime manipulation and analysis of app behaviour.
      • ☆ Objection - A runtime mobile exploration tool for Android that provides various features for analysing, manipulating, and bypassing app security controls.
      • ☆ Objection - Runtime exploration tool to bypass app security controls.
      • RMS Runtime Mobile Security - Frida web interface.
      • jnitrace - Frida-based JNI API tracer.
      • SSLsplit - Intercepts and manipulates SSL/TLS encrypted traffic.
      • AutoDroid - Mass APK gathering and analysis tool.
      • ☆ FriDump - Uses Frida to dump memory of running apps.
      • ☆ Binder Trace - Intercepts and parses Android Binder messages.
      • Drozer - Framework for Android security testing with dynamic analysis features.
      • apk-mitm - Prepares APKs for HTTPS inspection.
      • jtrace - Similar to strace, but for Android system calls.

    • Static Analysis Tools

      • Android Studio - Useful for analyzing decompiled apps via an IDE.
      • QARK - An open-source tool developed by LinkedIn for automatic Android app vulnerability scanning, including identifying potential security issues such as SQL injection, insecure data storage, and more.
      • MobSF - An open-source mobile app security testing framework that supports static and dynamic analysis of Android apps for vulnerabilities and privacy issues.
      • AndroBugs Framework - An open-source framework for analysing and scanning Android apps for security issues, including static and dynamic analysis capabilities.
      • ☆ imjtool - Firmware unpacking tool applicable to the widest variety of vendors and formats.
      • disarm - A simple command line utility that takes as an argument a 32-bit hexadecimal number, and parses it as an ARM-64 instruction, providing the disassembly.
      • QARK - An open-source tool for automatic Android app vulnerability scanning.
      • AndroBugs Framework - Analyzes and scans Android apps for security issues.
      • MobSF - Supports both static and dynamic analysis for Android app security testing.
      • Quark Engine - Integrates various tools as Quark Script APIs for mobile security research.
      • Dexcalibur - Automated tool for analyzing and instrumenting Android applications.
      • simplify - Android virtual machine and deobfuscator.
      • ☆ APK Dependency Graph - Visualizes APK class dependencies.
      • COVA - Computes path constraints based on user-defined APIs.
      • DIS{integrity} - Analyzes APKs for root, integrity, and tamper detection.
      • ☆ Obfu[DE - De-obfuscation tool that uses fuzzy comparison logic.
      • TinySmaliEmulator - Minimalist smali emulator for "decrypting" obfuscated strings.
      • deoptfuscator - Tool for deobfuscating apps using control-flow obfuscation.
      • ☆ imjtool - Firmware unpacking tool for various vendors and formats.
      • disarm - Command line utility for parsing ARM-64 instructions.

    • Decompilers

      • JDGui - Graphical utility to view Java source from class files.
      • Radare2 - Reverse engineering framework with disassembly and debugging.
      • ☆ JADX - An open-source tool for decompiling and analysing Android APK files into Java source code for reverse engineering and analysis.
      • Procyon - Procyon is a suite of Java metaprogramming tools, including a rich reflection API, a LINQ-inspired expression tree API for runtime code generation, and a Java decompiler.
      • Cfr - An open-source Java decompiler that supports decompilation of Android APK files into Java source code, including support for newer Java language features.
      • FernFlower - Fernflower is the first actually working analytical decompiler for Java and probably for a high-level programming language in general.
      • ☆ Apktool - A popular open-source tool for decompiling and recompiling Android APK files.
      • DEX2JAR - A tool for converting Android DEX files to JAR files, which can be further analysed using Java decompilers.
      • IDA Pro - A powerful commercial disassembler and debugger for analysing Android native code.
      • ☆ Ghidra - A free and open-source software reverse engineering (SRE) framework developed by the National Security Agency (NSA) that supports Android analysis.
      • Radare2 - A free and open-source reverse engineering framework that supports Android analysis, including disassembly, debugging, and binary analysis.
      • Androguard - An open-source tool for analysing and reverse engineering Android apps, including decompiling APK files, analysing Dalvik bytecode, and more.
      • ☆ APKLab - VS Code extension integrating multiple tools.
      • show-java - APK, JAR & Dex decompiler.
      • ☆ JADX - Decompiles APKs into Java source code.
      • Androguard - Analyzes and reverse engineers Android apps.
      • DEX2JAR - Converts DEX files to JAR files.
      • APK Studio - Qt-based IDE for reverse-engineering APKs.
      • Cfr - Supports decompilation of Android APK files.
      • apk2gold - Decompiles Android apps to Java (note: may be outdated).
      • AndroidProjectCreator - Converts APKs to Android Studio projects.
      • Procyon - Suite of Java decompilation tools.
      • ☆ Apktool - Popular tool for decompiling/recompiling APK files.
      • ☆ Ghidra - Free and open-source SRE framework.
      • FernFlower - Analytical decompiler for Java.

    • Malware Analysis

      • DroidDetective - Machine learning malware analysis for Android apps.
      • Cuckoo Droid - Automated Android malware analysis with Cuckoo Sandbox.
      • androwarn - Static code analyzer for malicious Android applications.

  • CTFs and CrackMes

  • Obfuscation & Anti-Reversing

  • Training

  • Firmware & Kernel Analysis

    • Case Studies

      • Binwalk - Analyze, extract, and reverse engineer firmware images.
      • AFLSmart - Fuzzer optimized for firmware image analysis.
      • FirmWire - Dynamic analysis platform for baseband firmware.
      • Android Kernel Exploits - Collection of kernel vulnerabilities and exploit techniques.

  • Misc

  • Licence

Programming Languages
Python 17 Java 12 JavaScript 4 C 2 C++ 2 Kotlin 2 HTML 1 Shell 1 TypeScript 1 Rust 1
Categories
Tools 70 Training 21 Resources 10 CTFs and CrackMes 6 Obfuscation & Anti-Reversing 6 Firmware & Kernel Analysis 4 Misc 4 Licence 1
Sub Categories
Decompilers 25 Case Studies 24 Dynamic Analysis Tools 22 Static Analysis Tools 20 Books 12 Documentation 7 Videos 5 Courses and Material 4 Malware Analysis 3
Keywords
android 19 reverse-engineering 11 apk 6 smali 5 frida 5 malware-analysis 5 java 4 apktool 4 security 4 deobfuscation 3 mobile 3 mobile-security 3 dex 3 androguard 3 android-security 3 obfuscation 3 ios-security 2 pentesting 2 dalvik 2 artificial-intelligence 2 android-application 2 tamper-detection 2 root-detection 2 malware 2 emulator 2 deobfuscator 2 qt5 1 qt 1 ai 1 java-decompiler 1 blackbox 1 blackbox-testing 1 blackhat 1 defcon 1 llm-agent 1 security-vulnerability-assessment 1 vulnerability 1 analysis 1 frida-node 1 gui 1 hook 1 hooking 1 instrumentation-automation 1 reverse 1 security-tools 1 car 1 android-malware 1 awesome 1 ctf 1 penetration 1