Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/quark-engine/dangee
Simple parts to construct your binary analysis
https://github.com/quark-engine/dangee
Last synced: 12 days ago
JSON representation
Simple parts to construct your binary analysis
- Host: GitHub
- URL: https://github.com/quark-engine/dangee
- Owner: quark-engine
- License: gpl-3.0
- Created: 2020-12-22T02:15:36.000Z (almost 4 years ago)
- Default Branch: main
- Last Pushed: 2020-12-24T07:24:06.000Z (almost 4 years ago)
- Last Synced: 2024-10-12T17:57:36.366Z (about 1 month ago)
- Language: Python
- Homepage:
- Size: 190 KB
- Stars: 2
- Watchers: 5
- Forks: 2
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# Dangee Framework
Dangee framework provides information of elements (function, variable etc.) in android binaries. Users can therefore, use these information to construct the analysis, find potential malicious activites or security vulnerabilities.
## Installation
```bash
pip install -U Dangee
```
## QuickStart
```python
from dangee.core import Dangee
d = Dangee("Roaming_Mantis.dex")
```
### Usage
1. Show all method
```python
d.value
```
2. Show Android native API
```python
d.isNative().value
```
3. Show self-defined method
```python
d.isSelfDefine().value
```
4. Matching method by case-insensitive words
```python
d.isNative().match("package").value
```
Multi-level match
```python
d.isNative().match("package").match("UsageStats").value
```
5. Crossreferences (XREFs)
```python
# XREFs FROM:
m1 = d.isNative().match("usage")
m1.get_xref_from().value
# XREFs TO:
m2 = d.isSelfDefine().match("getTopActivityName$loader_release")
m2.get_xref_to().value
```
6. Data flow check
```python
m1 = d.isNative().match("usage")
m2 = d.isNative().match("package")
m1.dataFlowto(m2)
```
> list[ {tuple(method1, method2) : result_of_data_flow_to_found } ]