Are there any tools out there that parse smali code directly to construct CFG? I know that Androguard does something similar but it seems to use decompilation on the apk file which can become unreliable in situations if the apk uses obfuscation techniques.
Building a Control Flow Graph for Android APK from smali code
1.9k views Asked by Lew Wei Hao At
1
There are 1 answers
Related Questions in ANDROID
- Creating global Class holder
- Flutter + Dart: Editing name of a tab shows up a black screen
- android-pdf-viewer Received status code 401 from server: Unauthorized
- Sdk 34 WRITE_EXTERNAL_STORAGE not working
- ussd reader in Recket Native module
- Incorrect display of LinearGradientBrush in IOS
- The Binary Version Of its metadata is 1.8.0, expected Version is 1.6.0 build error
- I can't make TextInput to auto expand properly in Android
- Creating multiple instances of a class with different initializing values in Flutter
- How to create a lottie animation
- making android analyze with coverity sast tool
- Flutter plugin development android src not opening after opening example
- I initialize my ViewModel in the Activity with several fragments as tabs, but the fragments(tabs) return null for the updated livedata
- Node.js Server + Socket.IO + Android Mobile Applicatoin XHR Polling Error...?
- How I can use the shared preferences class?
Related Questions in APK
- INSTALL_FAILED_DUPLICATE_PERMISSION: Package
- How to solve Execution failed for task ':generateReleaseBuildConfig'. error in a flutter project
- Does server-side content security policy exist for youtube video player API, app, mod apks and website?
- Widgets show in debug apk but are grey blocks in the release apk
- mergeDebugResources FAILED
- Can't decompile APK file properly
- How does Android handle APK apps data?
- Flutter built apk when opened in samsung phone is opening Samsung heath app
- Kivy/KivyMD convert to APK - different UI on PC and device with Android
- Android application with arguments via manifest
- Why am i getting black screen on kivy app
- In Android Studio, I am attempting to create a home page resembling the layout of Instagram's feed, where posts are displayed
- Flutter Google Play version not launching as opposed to APK with the same code
- Problem when executing the bubblewrap build command
- Touch Problem with slider on Android 12 compared to Android 8 in vuejs webapp in WebView
Related Questions in SMALI
- apktool doesn't compile changes into apk
- How to bypass isFromMockProvider
- Can anyone help me avoid being detected when using mock locations on an app, I have decompiled and pasted a code from it,s smali file
- Invalid register Must be between v0 and v15, inclusive
- How to add customization in toast
- How to Dump Protected libil2cpp.so and Metadata from Application on Android without Root
- any way to print the strings and objects, based in this function
- How to calculate the number of variables in the smali file during decompilation
- Smali syntax for String
- how to calculate the number of fields in the smali file?
- How to add certificate check in the reversed smali code with apktool
- Smali: methods to return true using sget-object
- android.content.res.Resources$NotFoundException: Unable to find resource ID #0xffffffff?
- App crash on rebuild without any change using apktool and apklab
- What alternatives do we have for Smalidea to debug smali code on Android?
Related Questions in CONTROL-FLOW-GRAPH
- How to get reasonable "topological order" of control flow graph (CFG) which may have loops when calculating MD index?
- Static analysis of unused assignments
- Drawing cfg using antlr4, graphiz and python and parser is empty
- Decompilation independent pattern structuring of cfg
- Decompilation creating basic blocks
- Is there a way to get Program Dependency Graph of a binary with angr?
- Control Flow Graph : properly identify loop "condition"
- Number of edges and nodes in this control flow graph (CFG)?
- Is there a way to get the filepaths of a given route's middleware in Express? Or create CFG that does?
- How exactly to construct "basic blocks" for a compiler (using JavaScript as an example)?
- Clarification on what exactly constitutes as a continue target in Vulkan SPIR-V
- It is possible to generate CFG + Callgraph in one file?
- How to determine if a BasicBlock is controled by a `if`
- Soot - Get JimpleBody from a CFG
- Time of Day affecting how Python Package is Loaded
Related Questions in ANDROGUARD
- How to Extract Strings, Methods, and API Calls with Androguard
- Android Malware Static Analysis - Androguard
- How to check for network security config with Androguard in python script
- AttributeError: 'EncodedMethod' object has no attribute 'is_external'
- Is there a way to get the parameter value of API call while doing APK static analysis?
- What does $ symbol mean in Java/Android API calls?
- Androguard "internal" vs "external" classes
- Has anyone encountered anything like this
- How to extract any resource file from APK using the Androguard?
- How to determine which dx/d8 version was used for apk creation?
- How to decompile a sequence of bytes from dex file using androgurad (or any other python tool)?
- Debugging reversed Android Application without emulator for Dynamic Analysis
- Androguard: 'NameError: name 'AnalyzeAPK' is not defined' error
- Androguard - huge APK analysis resulting in error `MemoryError`
- Java methods name convention
Popular Questions
- How do I undo the most recent local commits in Git?
- How can I remove a specific item from an array in JavaScript?
- How do I delete a Git branch locally and remotely?
- Find all files containing a specific text (string) on Linux?
- How do I revert a Git repository to a previous commit?
- How do I create an HTML button that acts like a link?
- How do I check out a remote Git branch?
- How do I force "git pull" to overwrite local files?
- How do I list all files of a directory?
- How to check whether a string contains a substring in JavaScript?
- How do I redirect to another webpage?
- How can I iterate over rows in a Pandas DataFrame?
- How do I convert a String to an int in Java?
- Does Python have a string 'contains' substring method?
- How do I check if a string contains a specific word?
Trending Questions
- UIImageView Frame Doesn't Reflect Constraints
- Is it possible to use adb commands to click on a view by finding its ID?
- How to create a new web character symbol recognizable by html/javascript?
- Why isn't my CSS3 animation smooth in Google Chrome (but very smooth on other browsers)?
- Heap Gives Page Fault
- Connect ffmpeg to Visual Studio 2008
- Both Object- and ValueAnimator jumps when Duration is set above API LvL 24
- How to avoid default initialization of objects in std::vector?
- second argument of the command line arguments in a format other than char** argv or char* argv[]
- How to improve efficiency of algorithm which generates next lexicographic permutation?
- Navigating to the another actvity app getting crash in android
- How to read the particular message format in android and store in sqlite database?
- Resetting inventory status after order is cancelled
- Efficiently compute powers of X in SSE/AVX
- Insert into an external database using ajax and php : POST 500 (Internal Server Error)
Have a look at https://androguard.blogspot.co.il/2011/02/android-apps-visualization.html.
In regards to your concerns about Androguard.
Do you mean "disassembling"? Well, a tool needs to understand the bytecode in order to build a call graph. If you mean "decompiling to Java", I'm pretty sure this doesn't happen.
There are various obfuscation techniques. And most has nothing to do with the call graph. E.g. name mangling replaces class name like
org.apache.http.client.HttpClientto something meaningless likea.b.c. You will still see this class and its functions in CFG.