A comprehensive, feature-rich static security analysis tool for Android APK, XAPK, and AAB files. This tool provides deep security analysis, compliance checking, and detailed reporting capabilities.
- APK Structure Analysis - Complete file structure and integrity analysis
- AndroidManifest.xml Analysis - Deep manifest inspection and security assessment
- DEX Code Analysis - Bytecode analysis and vulnerability detection
- Native Library Analysis - Binary analysis for native code vulnerabilities
- Assets & Resources Analysis - Resource file security assessment
- Hardcoded Secrets Detection - Advanced pattern matching for sensitive data
- Certificate & Signing Analysis - Certificate validation and signing scheme verification
- Network Security Analysis - Network configuration and communication security
- Code Quality Analysis - Complexity metrics, code smells, and quality assessment
- Permissions Analysis - Comprehensive permission usage and risk assessment
- Interactive HTML Dashboard - Beautiful, interactive reports with charts
- Executive Summary - High-level security assessment for stakeholders
- Technical Reports - Detailed technical analysis for developers
- Compliance Reports - OWASP, GDPR, PCI DSS compliance checking
- Comparison Reports - Compare multiple analysis results
- Multiple Export Formats - JSON, CSV, HTML export options
- Configurable Analysis - Customizable analysis settings via JSON config
- Quick Mode - Fast analysis for initial assessment
- Module Selection - Run specific analysis modules only
- Threading Support - Multi-threaded analysis for better performance
- Compliance Checking - Built-in compliance standards validation
- Vulnerability Database - Structured vulnerability tracking
# Install system dependencies (Ubuntu/Debian)
sudo apt-get update
sudo apt-get install python3 python3-pip binutils file
# Install Android SDK tools (optional but recommended)
# Download from: https://developer.android.com/studio
# Add to PATH: ~/Android/Sdk/tools and ~/Android/Sdk/platform-tools
sudo apt-get install apktool dex2jar# Clone the repository
git clone https://github.com/0xbthn/gardrop.git
cd gardrop
# Install Python dependencies (none required - uses standard library)
# pip install -r requirements.txt
# Read requirements.txt
# Make executable
chmod +x apk_analyzer.py# Analyze an APK file
python3 apk_analyzer.py app.apk
# Analyze XAPK file
python3 apk_analyzer.py app.xapk
# Custom output directory
python3 apk_analyzer.py app.apk -o detailed_report# Quick analysis with verbose output
python3 apk_analyzer.py app.apk --verbose --quick
# Compare with previous analysis
python3 apk_analyzer.py app.apk --compare previous_analysis.json
# Export results to CSV
python3 apk_analyzer.py app.apk --export csv
# Check specific compliance standards
python3 apk_analyzer.py app.apk --compliance gdpr,owasp
# Use custom configuration
python3 apk_analyzer.py app.apk --config my_config.json
# Run only specific modules
python3 apk_analyzer.py app.apk --only-modules security,network
# Skip specific modules
python3 apk_analyzer.py app.apk --skip-modules code_qualityCreate a config.json file to customize analysis settings:
{
"analysis": {
"quick_mode": false,
"threads": 4,
"timeout": 300
},
"security": {
"enable_advanced_checks": true,
"check_obfuscation": true
},
"network": {
"check_cleartext": true,
"check_certificate_pinning": true
}
}The tool generates comprehensive reports in the output directory:
security_report.html- Basic HTML report
- Security Score Visualization - Overall security assessment
- Vulnerability Distribution - Charts showing vulnerability types
- Permission Analysis - Permission usage and risk assessment
- Compliance Status - Real-time compliance checking
- Interactive Filters - Filter vulnerabilities by severity/category
- File integrity validation
- ZIP structure analysis
- Content enumeration
- Size and compression analysis
- Component security assessment
- Intent filter analysis
- Permission usage analysis
- Security configuration review
- Bytecode analysis
- Method and class inspection
- String extraction
- API usage analysis
- Obfuscation detection
- Debug settings analysis
- Backup configuration review
- Anti-tampering assessment
- Certificate validation
- Signing scheme verification
- Expiration checking
- Algorithm strength assessment
- Network security configuration
- Cleartext traffic detection
- Certificate pinning analysis
- Domain verification checking
- Cyclomatic complexity analysis
- Code duplication detection
- Dead code identification
- Naming convention checking
- Hardcoded credentials detection
- API key identification
- Token extraction
- Sensitive data discovery
- SQL injection patterns
- Weak encryption algorithms
- Insecure communication
- Improper data storage
- Code injection vulnerabilities
- Privilege escalation risks
- OWASP Mobile Top 10 - Mobile security best practices
- GDPR - Data protection compliance
- PCI DSS - Payment card security
- ISO 27001 - Information security management
- Severity-based vulnerability scoring
- Impact analysis for each finding
- Remediation recommendations
- Security score calculation
- APK - Android Application Package
- XAPK - Extended APK (with OBB files)
- AAB - Android App Bundle (basic support)
π Advanced APK Security Analysis Tool
________ .___ ____ ________
/ _____/_____ _______ __| _/______ ____ ______ \ \ / /_ |
/ \ ___\__ \\_ __ \/ __ |\_ __ \/ _ \\____ \ \ Y / | |
\ \_\ \/ __ \| | \/ /_/ | | | \( <_> ) |_> > \ / | |
\______ (____ /__| \____ | |__| \____/| __/ \___/ |___|
\/ \/ \/ |__|
(0xbthn)
[1/13] π APK Structure Analysis
ββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
[SUCCESS] Step completed successfully!
[2/13] π AndroidManifest.xml Analysis
ββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
[SUCCESS] Step completed successfully!
[3/13] π DEX Code Analysis
ββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
[SUCCESS] Step completed successfully!
...
ββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
β ANALYSIS COMPLETE β
ββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββββ
Security Score: 75/100
Results Location: /path/to/analysis_output_2025-09-01_00-00-00
Generated Reports:
β’ security_analysis.json - Detailed technical report
β’ security_report.html - Visual HTML dashboard
β’ security_summary.txt - Executive summary
β’ interactive_dashboard.html - Interactive dashboard
β’ compliance_report.html - Compliance assessment
Analysis completed successfully!
# Clone the repository
git clone https://github.com/0xbthn/gardrop.git
cd gardrop
# Create virtual environment
python3 -m venv venv
source venv/bin/activate # On Windows: venv\Scripts\activate
# Install development dependencies
pip install -r requirements.txt
This project is licensed under the MIT License - see the LICENSE file for details.
- OWASP Mobile Security Project - For security guidelines and best practices
- Android Security Team - For platform security insights
- Open Source Community - For various tools and libraries used
- Issues: GitHub Issues
- Discussions: GitHub Discussions
- Documentation: Wiki
- β¨ Interactive HTML dashboard with Chart.js
- π Advanced certificate and signing analysis
- π Comprehensive network security analysis
- π Code quality and complexity analysis
- π Compliance checking (OWASP, GDPR, PCI DSS)
- π Comparison and trending analysis
- βοΈ Configurable analysis settings
- π€ Multiple export formats (JSON, CSV, HTML)
- π Basic APK structure analysis
- π Manifest analysis
- π‘οΈ Security vulnerability detection
- π Basic HTML and JSON reporting
Made with β€οΈ for the security community Currently repo is being developed. You can throw PR for your mistakes and ideas you encounter