Skip to content

JordanSamhi/Javalyzer

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

36 Commits

src/main

src/main

 
 

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

build.sh

build.sh

 
 

pom.xml

pom.xml

 
 

Repository files navigation

Javalyzer

Tool based on Soot to extract different structures from JAVA programs and Android apps.

⚠️ Works better with Java 8

Getting started

Downloading the tool

git clone https://github.com/JordanSamhi/Javalyzer.git

Installing the tool

cd Javalyzer
sh build.sh

Running

java -jar target/Javalyzer-0.1-jar-with-dependencies.jar options

Options:

  • -i : Input file to analyze (JAR and APK file supported)
  • -cg : Extract Call Graph (CHA, RTA, VTA, SPARK)
  • -cfg : Extract methods control flow graphs (see below for explanation)
  • -f : Set output format (JSON, YAML)
  • -o : Set output folder
  • -h : Print help message

Usage

Extracting Call Graph

To extract the default call graph (CHA), use the following command:

java -jar target/Javalyzer-0.1-jar-with-dependencies.jar -i PATH_TO_APP -o OUTPUT_FOLDER -cg

To extract the call graph constructed with another algorithm, e.g., SPARK, use the following command:

java -jar target/Javalyzer-0.1-jar-with-dependencies.jar -i PATH_TO_APP -o OUTPUT_FOLDER -cg SPARK

Both commands will generate the following file: OUTPUT_FOLDER/callgraph.json, or OUTPUT_FOLDER/callgraph.yaml if -f YAML is used.

Extracting Control Flow Graphs

There are two ways to extract control flow graphs from apps:

  1. All available methods:
java -jar target/Javalyzer-0.1-jar-with-dependencies.jar -i PATH_TO_APP -o OUTPUT_FOLDER -cfg ALL

Javalyzer will avoid extracting the control flow graphs of system classes' methods (e.g., android.telephony.TelephonyManager) as well as library classes' methods (e.g., com.facebook).

  1. Targeted methods:
java -jar target/Javalyzer-0.1-jar-with-dependencies.jar -i PATH_TO_APP -o OUTPUT_FOLDER -cfg class1:method1|...|class2:method2

Javalyzer accepts a list of pairs of class name and method name separated by '|'
Class names and method names are separated by ':'
classX represents the class name in the form: com.example.MyClass
methodX represents the method name in the form: myMethod
You may notice that Javalyzer does not distinguish between methods with same name but different signatures, in this case, the control flow graphs of all methods with the same name will be extracted.
If methods given as input do not exist, no error are thrown, simply nothing will be extracted.

  • Example:
java -jar target/Javalyzer-0.1-jar-with-dependencies.jar -i PATH_TO_APP -o OUTPUT_FOLDER -cfg com.example.MainActivity:onCreate

Both commands will generate the following file: OUTPUT_FOLDER/controlflowgraph.json, or OUTPUT_FOLDER/controlflowgraph.yaml if -f YAML is used.

Built With

  • Maven - Dependency Management

License

This project is licensed under the GNU LESSER GENERAL PUBLIC LICENSE 2.1 - see the LICENSE file for details

Contact

For any question regarding Javalyzer, please contact me at: Jordan Samhi

About

No description, website, or topics provided.

Resources

Readme

License

LGPL-2.1 license
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages