This is a pre-production deployment of Warehouse, however changes made here WILL affect the production instance of PyPI.
Latest Version Dependencies status unknown Test status unknown Test coverage unknown
Project Description

APKiD

APKiD gives you information about how an APK was made. It identifies many compilers, packers, obfuscators, and other weird stuff. It’s PEiD for Android.

For more information on what this tool can be used for, check out our HITCON 2016 presentation: Android Compiler Fingerprinting.

Installing

The yara-python clone and compile steps here are temporarily necessary because we must point directly to our modified version of a yara branch which includes our DEX Yara module. This step is nessecary until (if?) the original maintainers of yara merge our module into the master branch. When this happens, we will undate the instructions here. After the yara-python fork is compiled, you can use pip to the most currently published APKiD package.

git clone https://github.com/rednaga/yara-python
cd yara-python
python setup.py install
pip install apkid

Usage

usage: apkid [-h] [-j] [-t TIMEOUT] FILE [FILE ...]

APKiD - Android Application Identifier

positional arguments:
  FILE                  apk, dex, or dir

optional arguments:
  -h, --help            show this help message and exit
  -j, --json            output results in JSON
  -t TIMEOUT, --timeout TIMEOUT
                        Yara scan timeout in seconds

Submitting New Packers / Compilers / Obfuscators

If you come across an APK or DEX that apkid does not recognize, please open a GitHub issue and tell us: * what you think it is * the file hash (either MD5, SHA1, SHA256)

We are open to any type of concept you might have for “something interesting” to detect, so do not limit yourself solely to packers, compilers or obfuscators. If there is an interesting anti disassembler, anti vm, anti* trick, please make an issue.

You’re also welcome to submit pull requests, just be sure to include a file hash so we can check the rule.

License

This tool is available under a dual license: a commercial one suitable for closed source projects and a GPL license that can be used in open source software.

Depending on your needs, you must choose one of them and follow its policies. A detail of the policies and agreements for each license type are available in the LICENSE.COMMERCIAL and LICENSE.GPL files.

Hacking

First you will need to install the specific version of yara-python the project depends on (more information about this in the Installing section):

git clone https://github.com/rednaga/yara-python
cd yara-python
python setup.py install

Then, clone this repo, compile the rules, and install the package in editable mode:

git clone https://github.com/rednaga/APKiD
cd APKiD
pip install -e .[dev]
./prep-release.py

If the above doesn’t work, due to permission errors dependant on your local machine and where Python has been installed, try specifying the --user flag. This is likely needed if you are working on OSX:

pip install -e .[dev] --user
Release History

Release History

0.9.4

This version

History Node

TODO: Figure out how to actually get changelog content.

Changelog content for this version goes here.

Donec et mollis dolor. Praesent et diam eget libero egestas mattis sit amet vitae augue. Nam tincidunt congue enim, ut porta lorem lacinia consectetur. Donec ut libero sed arcu vehicula ultricies a non tortor. Lorem ipsum dolor sit amet, consectetur adipiscing elit.

Show More

0.9.3

History Node

TODO: Figure out how to actually get changelog content.

Changelog content for this version goes here.

Donec et mollis dolor. Praesent et diam eget libero egestas mattis sit amet vitae augue. Nam tincidunt congue enim, ut porta lorem lacinia consectetur. Donec ut libero sed arcu vehicula ultricies a non tortor. Lorem ipsum dolor sit amet, consectetur adipiscing elit.

Show More

0.9.2

History Node

TODO: Figure out how to actually get changelog content.

Changelog content for this version goes here.

Donec et mollis dolor. Praesent et diam eget libero egestas mattis sit amet vitae augue. Nam tincidunt congue enim, ut porta lorem lacinia consectetur. Donec ut libero sed arcu vehicula ultricies a non tortor. Lorem ipsum dolor sit amet, consectetur adipiscing elit.

Show More

0.9.1

History Node

TODO: Figure out how to actually get changelog content.

Changelog content for this version goes here.

Donec et mollis dolor. Praesent et diam eget libero egestas mattis sit amet vitae augue. Nam tincidunt congue enim, ut porta lorem lacinia consectetur. Donec ut libero sed arcu vehicula ultricies a non tortor. Lorem ipsum dolor sit amet, consectetur adipiscing elit.

Show More

Download Files

Download Files

TODO: Brief introduction on what you do with files - including link to relevant help section.

File Name & Checksum SHA256 Checksum Help Version File Type Upload Date
apkid-0.9.4-py2.py3-none-any.whl (28.6 kB) Copy SHA256 Checksum SHA256 2.7 Wheel Sep 25, 2016
apkid-0.9.4.tar.gz (40.7 kB) Copy SHA256 Checksum SHA256 Source Sep 25, 2016

Supported By

WebFaction WebFaction Technical Writing Elastic Elastic Search Pingdom Pingdom Monitoring Dyn Dyn DNS HPE HPE Development Sentry Sentry Error Logging CloudAMQP CloudAMQP RabbitMQ Heroku Heroku PaaS Kabu Creative Kabu Creative UX & Design Fastly Fastly CDN DigiCert DigiCert EV Certificate Rackspace Rackspace Cloud Servers DreamHost DreamHost Log Hosting