ClassyShark
ClassyShark is a standalone binary inspection tool for Android developers. It can reliably browse any Android executable and show important info such as class interfaces and members, dex counts and dependencies. ClassyShark supports multiple formats including libraries (.dex, .aar, .so), executables (.apk, .jar, .class) and all Android binary XMLs: AndroidManifest, resources, layouts etc. Useful links: - User guide - Command-line reference - Gradle sample - Vision and Strategy Download: To run, grab the latest JAR and run java -jar ClassyShark.jar. Export data in text format Exporter API finder 🚧 work in progress Develop: - Clone the repo - Open in your favorite IDE/editor - Build options: IntelliJ - builds automatically when exporting the project - Gradle script RetroBuild Arch Linux: If you're running Arch Linux you can install the latest prebuilt jar from the AUR. Dependencies: - dexlib2 by jesusfreke - guava by Google - ASM by OW2 - ASMDEX by OW2 - java-binutils by jawi - BCEL by Apache Support: If you've found an error, please file an issue: https://github.com/google/android-classyshark/issues Patches are encouraged, and may be submitted by forking this project and submitting a pull re
FEATURES
SIMILAR TOOLS
A tool for injecting and loading executables with a focus on stealth techniques.
An advanced cross-platform tool for detecting and exploiting SQL injection security flaws
Assembler/disassembler for the dex format used by Dalvik, Android's Java VM implementation.
A tool for signature analysis of RTF files to detect potentially unique parts and malicious documents.
A PE/COFF file viewer that displays header, section, directory, import table, export table, and resource information within various file types.
A Go library for manipulating YARA rulesets with the ability to programatically change metadata, rule names, and more.
Binwalk is a tool for analyzing, reverse engineering, and extracting firmware images with security and Python 2.7 deprecation notices.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.