• Search by Module
• Search by Words
• Search Projects

• Java
• Python
• JavaScript
• TypeScript
• C++
• Scala
• Blog

Project: Adhrit (GitHub Link)

• Adhrit-master
  • .github
    • ISSUE_TEMPLATE
      • feature_request.md
      • bug_report.md
  • Docs
    • logo
    • images
    • files
  • _config.yml
  • PULL_REQUEST_TEMPLATE.md
  • installer.py
  • config
  • adhrit.py
  • .travis.yml
  • README.md
  • recons
    • root.py
    • vapp.py
    • clean.py
    • apk_extract.py
    • virustotal.py
    • dynamic.py
    • manifest_analysis.py
    • native_recon.py
    • __init__.py
    • smali_extract.py
    • enjarify
      • util.py
      • mutf8.py
      • dalvikformats.py
      • dalvik.py
      • jvm
        • optimization
          • registers.py
          • options.py
          • jumps.py
          • __init__.py
          • stack.py
          • consts.py
        • scalartypes.py
        • writebytecode.py
        • jvmops.py
        • constantpool.py
        • ir.py
        • constants
          • genlookup.py
          • calc.py
          • __init__.py
        • genmathops.py
        • arraytypes.py
        • __init__.py
        • error.py
        • writeir.py
        • writeclass.py
        • mathops.py
      • flags.py
      • parsedex.py
      • __init__.py
      • main.py
      • byteio.py
      • treelist.py
      • typeinference
        • __init__.py
        • typeinference.py
    • smarser
      • patterns.py
      • parser.py
  • tests
    • test_welcome.py
    • __init__.py
  • CODE_OF_CONDUCT.md
  • tools
    • sign.jar
    • lib
      • d2j-smali-2.0.jar
      • dex-tools-2.0.jar
      • d2j-jasmin-2.0.jar
      • dex-reader-api-2.0.jar
      • d2j-base-cmd-2.0.jar
      • dex-writer-2.0.jar
      • dex-reader-2.0.jar
      • antlr-runtime-3.5.jar
      • dex-translator-2.0.jar
    • JarConverter.sh
    • AXML.jar
  • .gitignore
  • LICENSE.txt

Adhrit is an open source Android APK reversing and analysis suite. The tool is an effort to find an efficient solution to all the needs of mobile security testing and automation. Adhrit has been built with a focus on flexibility and mudularization. Adhrit currently uses the Ghera benchmarks to identify vulnerability patterns in Android applications. The project is subject to continuous updations and will incorporate the latest available methodologies and tools. Adhrit has been presented at conferences like OWASP Seasides, ThreatCon and Cysinfo. Feature requests and bug reports are always welcome!

---

Features:

• APK Extraction

  • assets
  • classes.dex
  • native libraries
  • jar file from dex (integrated Enjarify)

• Source Extraction

  • Certificate/signature
  • Java source
  • smali source
  • Parsed XML resource files
  • Parsed AndroidManifest
  • Native library

• Static Analysis

  • Manifest analysis

    • Critical permission usage analysis
    • MainActivity identification
    • Backup status
    • Exported activities
    • Exported broadcast receivers
    • Identify intent filters
    • Identify embedded deeplinks
    • Automated ADB payload generation for exported activities

  • Bytecode analysis

    • ICC

      • Dynamic Broadcast Receivers
      • Empty Pending Intents
      • Sticky Broadcasts
      • Unprotected Broadcast Receivers
      • Weak Dynamic Invocation Checks

    • Web Issues

      • JavaScript Execution in WebViews
      • HTTP Connections
      • Unsafe Intent URL Resolving Implementation
      • Overwritable Cookie
      • File Access from URLs
      • Content Provider Access from URLs
      • Supressed SSL Warnings

    • Storage Issues

      • Non-parameterized SQL queries
      • Usage of External Storage for application data

    • Networking

      • Missing Server Certificate Validity Check
      • Insecure SSL Socket Factory

    • Crypto Issues

      • Usage of ECB Block Cipher

    • const-strings

    • CTF flags

    • URLs

  • Native Library analysis

    • Library info
    • Sections
    • Base64 Decoding of strings from .data

• Miscellaneous

  • Rebuilding the APK
  • Signing the APK

---

Screenshots:

---

Pre-requisites:

• Linux or MAC
• Python3
• Java JDK

---

Quick Setup

1. Dowload the zip or clone the package and extract the tool ( git clone https://github.com/abhi-r3v0/Adhrit.git ).
2. Open config and input your VirusTotal API key without any quotes. (Click here to know how to obtain your VT API key)
3. Open a terminal and cd into the directory.
4. Run the installer script to install the necessary tools/dependencies: python3 installer.py

---

Presentations / Conferences:

• OWASP Seasides

• Cysinfo Cyber Security Meetup

---

Usage:

1. Place the application (apk file) in the tool directory.
2. Use python3 adhrit.py -h for usage help.

Example:

python3 adhrit.py -a myapp.apk

Pentest Mode

python3 adhrit.py -pen myapp.apk

Refer to the detailed documentation for complete details

---

Blogs:

• bi0s: Android APK Reconnaissance Tool

• NeOnSec: Android APK Analysis

  ---

Video:

• Bug Bounty Tutorial

• Solving a simple mobile CTF challenge

---

Team:

Project Lead:

• Abhishek J M (jmabhishek4@gmail.com, @HawkSpawn)

Lead Contributors:

• P S Narayanan (thepsnarayanan@gmail.com, @0xP5N_)
• Akhil Mahendra (akhilmahendra7991@gmail.com, @Akhil_Mahendra)
• Heeraj Nair (heeraj123@gmail.com, @heerajnair)

Logo:

• Vaisakh (vaisakhjnr@gmail.com, @vaisakhjnr) (new)
• Loyd Jayme (loydjayme1996@gmail.com, @loydjayme25)

---

Mentions:

• Troopers
• Seclist
• DedSec
• Neonix
• Howucan.gr
• HackerTor
• tuicool
• Tuisec
• Pinterest
• @androidtools on Twitter
• pcbbc
• Ethical Hacking Consultants
• Anonymoushacker
• Pax0r
• KitPloit
• ISEC
• Prodefence
• appscan.io
• Weixin
• blackhatsecdevteam
• 360doc
• Hackers Online Club
• Altervista
• Xaunwulab
• Prodefense
• Digital Munition
• Xenicom

---

Credits:

• apktool
• jarsigner
• AXML2Printer
• jd-cli
• aapt
• Enjarify
• Ghera
• Smalisca

---

Note:

1. Filenames with two '.' may give an error. Please rename the apk in such cases. For example, if your file name is my.app.apk, rename it to myapp.apk

---