Unifying Android code for enhanced static analysis.
- mount platforms directory into container, eg:
/platforms - mount folder containing apk into container, eg:
/root/apps - entrypoint is
/root/JuCify/runTool.sh(usage seeJuCify\scripts\main.sh), specify mounted platforms dir after-p, full apk path after-f(can't use relative path). specify-tfor taint analysis. - intermediate files and folders include
APK_NAME/ APK_NAME_result/ APK_NAME.native.log APK_NAME.flow.log. specify-cin cmdline to automatically delete two folders.
eg:
docker run --rm -v C:\Users\xxx\AppData\Local\Android\Sdk\platforms\:/platforms -v C:\Users\xxx\JuCify\benchApps\:/root/apps warrenwjk/jucify -p /platforms -f /root/apps/getter_imei.apk -t -c
or override entrypoint to execute preferred script
docker run --rm -v C:\Users\xxx\AppData\Local\Android\Sdk\platforms\:/platforms -v C:\Users\xxx\JuCify\benchApps\:/root/apps --entrypoint /bin/bash warrenwjk/jucify /root/JuCify/runTool.sh -p /platforms -f /root/apps/getter_imei.apk -t -c
nativediscloser submodule is modified, see commits in: https://github.com/am009/nativediscloser/tree/6897c58_docker
git clone https://github.com/JordanSamhi/JuCify.git
cd JuCify mvn clean install
If you stumble upon a stack overflow error while building JuCify, increase memory available with this command:
export MAVEN_OPTS=-Xss32m
Then, try to rebuild.
java -jar JuCify/target/JuCify-0.1-jar-with-dependencies.jar options
Options:
-a: The path to the APK to process.-p: The path to Android platofrms folder.-f: Provide paths to necessary files for native reconstruciton.-r: Print raw results.-ta: Perform taint analysis.-c: Export call-graph to text file.-e: Export call-graph to dot format.
- Maven - Dependency Management
This project is licensed under the Apache License 2.0 - see the LICENSE file for details
For any question regarding this study, please contact us at: Jordan Samhi