Skip to content

JordanSamhi/Difuzer

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

108 Commits

artefacts

artefacts

 
 

libs

libs

 
 

src/main

src/main

 
 

.classpath

.classpath

 
 

.gitignore

.gitignore

 
 

.project

.project

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

pom.xml

pom.xml

 
 

Repository files navigation

Difuzer

In this repository, we host Difuzer, a static logic bomb detector. Difuzer relies on static inter-procedural taint analysis to find sensitive trigger entry-points in Android apps. It is able to filter abnormal triggers known as Hidden Sensitive Operations from trigger-specific features.

Getting started

Downloading the tool

git clone https://github.com/JordanSamhi/Difuzer.git

Installing the tool

cd Difuzer
mvn clean install:install-file -Dfile=libs/soot-infoflow-android-classes.jar -DgroupId=de.tud.sse -DartifactId=soot-infoflow-android -Dversion=2.7.1 -Dpackaging=jar
mvn clean install:install-file -Dfile=libs/soot-infoflow-classes.jar -DgroupId=de.tud.sse -DartifactId=soot-infoflow -Dversion=2.7.1 -Dpackaging=jar
mvn clean install

java -jar Difuzer/target/Difuzer-0.1-jar-with-dependencies.jar options

Options:

  • -a : The path to the APK to process.
  • -p : The path to Android platofrms folder.
  • -r : Displays raw results.
  • -t : Set the timeout of the analysis.
  • -e : Set an EasyTaintWrapper file.

Built With

  • Maven - Dependency Management

License

This project is licensed under the Apache License 2.0 - see the LICENSE file for details

Contact

For any question regarding this study, please contact us at: Jordan Samhi

About

Static Logic Bomb Detector in Android apps

Topics

static-analysis android-application software-engineering anomaly-detection

Resources

Readme

License

Apache-2.0 license
Activity

Stars

2 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages