Jamal

Visual Studio Code extension for aiding in android mobile application analysis.

Jamal is mainly a wrapper around a slightly modified Soot Framework with extra rendering for easing Control Flow analysis.

Given an android application APK file, Jamal aids in decompilation and static analysis by producing Grimple files which are an aggregated version of a typed 3-address intermediate representation suitable for code inspection.

Please report any bugs you encounter.

Overview

Architecture

Quick Start

1. Start new project
2. Right click on the desired APK file, as an example I am using the Oversecured Vulnerable Android App select Run analysis.
3. Wait for soot engine to finish decompilation and analysis.
4. Result will be generated in jamalOutput folder in your current workspace.

Features

Dynamic Control Flow Graph inspection

Syntactic and Semantic support for Soot IR

Graphviz Dot Representation

Exportable dot representation of the recovered Control Flow Graph.

Jamal works out of the box!

Jamal supports both Windows and Linux OS (both 32 and 64 bits) out of the box. No need to deal with dependencies, install extension and start analysis right away.

Known issues

Jamal can run out of memory when analysing big APK files, please allocate more memory for the JVM from the extension settings.

Requirements

Jamal depends on:

• Soot
• Java
• Android Platforms
• tintinweb Interactive Graphviz

Release Notes

CHANGELOG