Hooker is an open-source dynamic analysis framework designed for Android applications. The tool utilizes the Android Substrate framework to intercept and modify API calls made by targeted Android applications during runtime. The framework captures detailed information about application behavior by monitoring API interactions in real-time. Collected data can be stored in ElasticSearch for advanced querying and analysis, or exported to JSON files for further processing. Hooker includes a collection of Python scripts that automate the analysis process, enabling security researchers to systematically examine multiple applications and collect comprehensive API call data. This automation capability streamlines the workflow for analyzing large sets of Android applications. The tool operates as a proof of concept that depends on the proper installation and configuration of the Substrate framework on the target Android device. Without correctly installed Substrate components, the hooking functionality cannot operate effectively. Hooker provides security researchers and malware analysts with insights into Android application behavior by revealing API usage patterns, data access attempts, and potential security vulnerabilities through dynamic runtime analysis.