StaDynA is a system supporting security app analysis in the presence of dynamic code update features (dynamic class loading and reflection). Our tool combines static and dynamic analysis of Android applications in order to reveal the hidden/updated behavior and extend static analysis results with this information. This work has been done at the University of Trento. Publication: The results of our research were presented at the 5th ACM Conference on Data and Application Security and Privacy (ACM CODASPY 2015). Please use the following bibtex reference to cite our paper: @inproceedings{StaDynA_Zhauniarovich2014, author = {Zhauniarovich, Yury and Ahmad, Maqsood and Gadyatskaya, Olga and Crispo, Bruno and Massacci, Fabio}, title = {{StaDynA: Addressing the Problem of Dynamic Code Updates in the Security Analysis of Android Applications}}, booktitle = {Proceedings of the 5th ACM Conference on Data and Application Security and Privacy}, series = {CODASP
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A search engine for the Internet of Things (IoT) that discovers and monitors devices connected to the internet.
Python tool for monitoring user-select APIs in Android apps using Frida.
An open-source phishing toolkit for businesses and penetration testers.
Phish Report is inaccessible without JavaScript and cookies enabled.
iOS Reverse Engineering Toolkit for automating common tasks in iOS penetration testing.
A command line steganography tool that uses LSB technique to hide files within images without visible alteration.
A tool for extracting static and dynamic features from Android APKs.
Hashcat is a fast and advanced password recovery utility that supports various attack modes and hashing algorithms, and is open-source and community-driven.
A data-mining and deep web asset search engine for breach analysis and prevention services.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.