Bugbane
App for self-conducting device forensics on Android devices
Bugbane is a lightweight Android forensics and anomaly-detection tool designed to help users identify signs of compromise, including spyware, stalkerware, and other suspicious behavior, directly on their own devices. Bugbane builds on de-facto standard efforts such as MVT, reusing its indicators-of-compromise (IoC) formats and datasets, and is compatible with AndroidQF exports. It is designed to integrate easily into the existing workflows of civil society organizations, supporting their encryption tools of choice.
Bugbane operates on-device, without requiring additional hardware or rooting and guides users through a structured, user-friendly acquisition and analysis process. By simplifying data collection and consensual sharing of forensic artifacts with partner organizations, Bugbane aims to reach users who are typically outside established support networks, contributing to a broader and more accurate understanding of threats targeting civil society.
- The project's own website: https://github.com/osservatorionessuno/bugbane
Run by Osservatorio Nessuno OdV
This project was funded through the NGI Mobifree Fund, a fund established by NLnet with financial support from the European Commission's Next Generation Internet programme under the aegis of DG Communications Networks, Content and Technology. The NGI Mobifree R&D programme is part of Horizon Europe research and innovation programme under grant agreement No. 101135795.
