FlowDroid Logo

FlowDroid

0
Free
Visit Website

FlowDroid is a context-, flow-, field-, object-sensitive and lifecycle-aware static taint analysis tool for Android applications. Unlike many other static-analysis approaches for Android, FlowDroid aims for an analysis with very high recall and precision. To achieve this goal, two main challenges were addressed: increasing precision by building an analysis that is context-, flow-, field- and object-sensitive, and increasing recall by creating a complete model of Android’s app lifecycle. The analysis is based on Soot and Heros, utilizing a precise callgraph for flow- and context-sensitivity, and IFDS-based flow functions for field- and object-sensitivity. An accurate and efficient alias search is crucial for context-sensitivity in conjunction with field-sensitivity.

FEATURES

ALTERNATIVES

A Burp extension for scanning JavaScript files for endpoint links

Cutting-edge technology for developing security applications within the Linux kernel.

Threatspy is an application security testing platform that enables developers and security teams to discover, analyze, prioritize, and remediate vulnerabilities in web applications and APIs through an automated end-to-end process.

A Java API for searching and downloading Android applications from Google Play with additional check-in features for generating ANDROID-ID.

A web application firewall and API security platform that combines API discovery, runtime protection, vulnerability testing, and security posture management.

A free online tool that scans and fixes common security issues in WordPress websites.

Security design review automation tool that scans design documents and provides security requirements to development teams during the planning phase.

An agentless API security platform that discovers, tests, and secures APIs through source code analysis without requiring traffic monitoring.

PINNED