Tool to analyze APK files
Project description
sdanalyzer
Tool to analyze a large number of Android applications easily. It consist of a command line tool extracting data from all applications, storing it in a local database, and then opening a web interface to manually analyze the results in a user-friendly way.
Installation
You can install sdanalyzer directly from pypi : pip install sdanalyzer.
You can also download the code from the git repository, and install it from the source code :
git pull git@github.com:Te-k/sdanalyzer.git
cd sdanalyzer
pip install .
How to use it
Create a new phone :
sdanalyzer phones --create "Roberto's Phone"
1 Roberto's Phone None
Import APKs:
sdanalyzer import --phone 1 .
Run the web server to check the APKs:
sdanalyzer serve
Once you have done your analysis, you can delete the local database with sdanalyzer flush
You can check all the options of the sdanalyzer command :
$ sdanalyzer -h
usage: sdanalyzer [-h] {serve,flush,phones,import,delete} ...
Launches sdanalyzer
positional arguments:
{serve,flush,phones,import,delete}
Subcommand
serve Launch the web app
flush Flush the database
phones List phones
import Import apks
delete Delete a phone and related data
export Export information on all apks of a phone
optional arguments:
-h, --help show this help message and exit
Infos on how it works
- This tool largely relies on androguard
- The local database is an sqlite database stored in
~/.config/sdanalyzer/db.db - An incomplete list of trusted APK signing certificates is provided with the tool. It has been built manually and is helpful to quickly sort apps, but it is clearly incomplete so use at your own risk.
- A few yara rules are provided with the tool but if you want to rely on Yara for detection, you are encouraged to provide additional yara rules with the
-yoption to thesdanalyzer importcommand.
Feel free to open issues for new feature ideas or bugs.
License
This code is released under GPLv3 license.
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
File details
Details for the file sdanalyzer-0.1.7.tar.gz.
File metadata
- Download URL: sdanalyzer-0.1.7.tar.gz
- Upload date:
- Size: 32.4 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/4.0.1 CPython/3.10.7
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 00036eec3091a53a46be4093256defd2db92d89212f0cf8d3e687fde5ceb0ad9 |
|
| MD5 | 2aa6e8759cef6c90350195aaff168227 |
|
| BLAKE2b-256 | 868114c495fa53c9547b949158b6c8906e09ba653e19370b35ed172eebae29c3 |
File details
Details for the file sdanalyzer-0.1.7-py3-none-any.whl.
File metadata
- Download URL: sdanalyzer-0.1.7-py3-none-any.whl
- Upload date:
- Size: 33.7 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/4.0.1 CPython/3.10.7
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 939d6c9329b8236737ac973c65056347d43ac6758da6172bf6ec80f657f0344a |
|
| MD5 | a6b19f4e1c33d55e33d0081e45d953c6 |
|
| BLAKE2b-256 | 5b3376323d9eb5030cd48b039e4b1a26c737175bd60394e9e8a154785ca15481 |
