Deepdive Android
| Project Name | Stars | Downloads | Repos Using This | Packages Using This | Most Recent Commit | Total Releases | Latest Release | Open Issues | License | Language |
|---|---|---|---|---|---|---|---|---|---|---|
| Android Security Awesome | 6,800 | 4 days ago | 1 | apache-2.0 | Shell | |||||
| A collection of android security related resources | ||||||||||
| Owasp Masvs | 1,666 | 3 days ago | 12 | other | TeX | |||||
| The OWASP MASVS (Mobile Application Security Verification Standard) is the industry standard for mobile app security. | ||||||||||
| Librefox | 1,539 | 2 years ago | 46 | mpl-2.0 | JavaScript | |||||
| Librefox: Firefox with privacy enhancements | ||||||||||
| Rucky | 368 | 4 days ago | 5 | gpl-3.0 | Java | |||||
| A simple to use USB HID Rubber Ducky Launch Pad for Android. | ||||||||||
| Photok | 284 | 14 days ago | 23 | apache-2.0 | Kotlin | |||||
| Encrypted Photo Safe for Android | ||||||||||
| Evabs | 141 | 3 years ago | CMake | |||||||
| An open source Android application that is intentionally vulnerable so as to act as a learning platform for Android application security beginners. | ||||||||||
| Droidsniff | 121 | 9 years ago | 4 | mit | C | |||||
| DroidSniff is an Android app for Security analysis in wireless networks and capturing facebook, twitter, linkedin and other accounts. | ||||||||||
| Android Pwdhash | 36 | 3 months ago | 6 | other | Kotlin | |||||
| A password hash implementation for Android. | ||||||||||
| Aaf Easypassword | 24 | 4 years ago | 2 | other | Kotlin | |||||
| :lock: Easy Password is password management application. This application uses pattern locks to manage information that requires security. | ||||||||||
| Women_safety_box | 21 | 3 years ago | Java | |||||||
| This is an Android App for Women or any Female, which Will Call to an Emergency number, based on a specific voice command like "Help" . It will also send SMS with current GPS coordinates to those numbers. | ||||||||||
DeepDive-Android
An educational tool for the reverse engineering and security assessment of Android apps
We initially experimented with reverse engineering to explore vulnerabilities of our own apps. We learned how hackers find security gaps in our apps. Looking other apps on our phone, we also learned how seemingly legitimate apps invade our privacy.
This is an early release, DeepDive is still in BETA. We need your donations to help support research, development and testing.
Finally, a workflow you can live with
Android is the server. Access the details of reverse engineering from your handheld device or from the convenience of your large Mac or PC screen. How we use DeepDive:
- Join the same WiFi on your Android phone or tablet as your Mac or PC.
- Install and start DeepDive on your Android phone or tablet.
- Note the IP address on the home screen and go to that address from your Mac or PC.
Installation Instructions
Notes On Security
Configure a user login from app Settings. All communications are encrypted with a self signed security certificate. All communications are AES encrypted via TLS 1.2 HTTPS however your browser is unable to associate the certificate with a domain name or static IP address, consequently you will see a security warning or error message.
Lucene, Ultra-fast search
A decompiled app can have hundreds of thousands of files and millions of lines of code. That's why DeepDive has Lucene, a near-instant search capability, the search engine behind Amazon, AOL, LinkedIn, and Twitter. You can index the source code from a single app or index the entire virtual filesystem and search across hundreds of apps.
Search dozens of keywords at a time
Search Sets are collections of Lucene Searches. Search for dozens of keywords at a time. The app comes with default Search Sets and you can create your own.
Features
- The source code is at your fingertips using the elFinder "Mac-like" file manager.
- Your code is secure on your hardware, not on an unknown server in the Cloud.
- Device details, app details and permissions
- APK extraction and unpacking
- DEX optimization
- Convert Android DEX to Jar
- Decompile most Android apps
- Private and crypto file storage
- File manager and finder
- Instant search and search sets
- Shell, Logcat & Keystore utilities
- Android API 24+ (Nougat+)
- Root not required
Tools included
- APK parser by Jared Rummler
- DEX disassembler by Jeasus Freke
- DEX2JAR by Bob Pan
- CFR by Lee Benfield
- Jadx by Skylot
- Fernflower by JetBrains
- Lucene search engine
- Nanohttpd web server
- elFinder file manager
- Apache Lucene
Licensing
- DeepDive is offered for free under conditions of the GPLv3 open source software license.
- Contact Nuvolect LLC for a less restrictive commercial license if you would like to use the software without the GPLv3 restrictions.
Contributing, Bug Reports
- We use GitHub for bug tracking. Please search the existing issues for your bug and create a new one if the issue is not yet tracked. https://github.com/Nuvolect/DeepDive-Android/issues
- Want to contribute? By all means, dive in! See CONGRIBUTING.md. The UI could use some help with Angular and other web skills. The Lucene search engine is great but we are not using all it can do. Are you into Android security? Help us expose vulnerabilities and exploitations.
Support
- For troubleshooting and support information, please visit the wiki. https://github.com/teamnuvolect/DeepDive-Android/wiki
- Consider making a donation to help fund support and development efforts.
For general questions and discussion about features, visit the forum.
Copyright Nuvolect LLC
