Android Unpacker

A (hopefully) generic unpacker for packed Android apps.

How does it work?

The tool is a patched version of AOSP with some additional scripts. The scripts executes the emulator and installs the APK. Following execution, it dumps the unpacked version of the DEX using different hooks. The result is two files, one of them should be the real dumped version of the DEX file, depending on how the targeted packer works.

Presented in DEF CON 25 (2017) by:

Slava Makkaveev
Avi Bashan

How to build?

Clone the AOSP project using the following instructions. Use the android-6.0.1_r65.
Apply unpacker.patch over <aosp folder>/art using $ git apply (Please note, your cwd should be <aosp dir>/art)
Build the AOSP source using $ lunch full-eng

Usage

Execute the following command

$ ./unpacker.sh <aosp folder> <apk>

The unpacked DEX file will be created in the current working dir.

License

Released under "Apache 2.0" license.

Name		Name	Last commit message	Last commit date
Latest commit History 6 Commits
.github/workflows		.github/workflows
README.md		README.md
unboxing_android_bashan_makkaveev.pdf		unboxing_android_bashan_makkaveev.pdf
unpacker.patch		unpacker.patch
unpacker.sh		unpacker.sh

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Android Unpacker

How does it work?

How to build?

Usage

License

About

Releases

Packages

Contributors 2

Languages

CheckPointSW/android_unpacker

Folders and files

Latest commit

History

Repository files navigation

Android Unpacker

How does it work?

How to build?

Usage

License

About

Topics

Resources

Stars

Watchers

Forks

Releases

Packages 0

Contributors 2

Languages

Packages