Androguard
Static and dynamic analysis of Android apps
The Androguard project is used to analyze Android applications. This project marks a major evolution for Androguard, focusing on modernizing its architecture. The core strategy is to replace its monolithic structure with a suite of independent, native Python libraries for parsing essential Android files like AXML, APK, and DEX. This modular approach will make the tools easier to maintain, reduce external dependencies, and allow for greater flexibility.
Performance is a key driver of this initiative. To tackle the primary analysis bottleneck, a new high-speed dex-bytecode library will be developed in Rust with Python bindings. The main Androguard project will then be refactored to integrate these new, faster components, resulting in a cleaner and more efficient core tool for static analysis.
Building on this new foundation, the project will expand into advanced security domains. This includes APKXploit, a new tool for penetration testing; AndroidIR, which will enable sophisticated code analysis via an Intermediate Representation; and Androguard-MCP, an innovative plugin to help security engineers in discovering vulnerabilities more effectively.
- The project's own website: https://github.com/androguard/
Run by Androguard
This project was funded through the NGI Mobifree Fund, a fund established by NLnet with financial support from the European Commission's Next Generation Internet programme under the aegis of DG Communications Networks, Content and Technology. The NGI Mobifree R&D programme is part of Horizon Europe research and innovation programme under grant agreement No. 101135795.