use maintained axml dump program

Question

use maintained axml dump program

eighthave opened this issue 5 years ago · 3 comments

There are a number of maintained AndroidManifest.xml dumpers, including at least two written in Python and are in Debian: androguard and pyaxmlparser. The use of axmlprinter2 should be replaced by one of those. Then all the dependencies (except maybe dex2jar) would be available from Debian.

For sheer speed, there is https://github.com/avast/apkparser but that is written in Go, so it would require an exec call.

Answer 1 · 2020-01-23T08:55:05.000Z

Also, FYI, androguard is a full DEX toolkit, so you could probably replace the dex2jar calls with androguard function calls in python.

Answer 2 · 2020-01-23T08:58:37.000Z

I guess I forgot some context here: this looks useful but a pain to setup. It looks quite close to working with dependencies from Debian. I've been packaging Android reversing tools for Debian, so if droidlysis got its deps from Debian, I would package it, if you thought that would be useful.

Answer 3 · 2020-01-23T10:28:44.000Z

There are a number of maintained AndroidManifest.xml dumpers, including at least two written in >Python and are in Debian: androguard and pyaxmlparser. The use of axmlprinter2 should be replaced >by one of those.

yes, you are right and I'll add that to my to-do list.

Also, FYI, androguard is a full DEX toolkit, so you could probably replace the dex2jar calls with androguard function calls in python.

Many of the tools I use are redundant. The fact is that some fail in some situations while others do not. When I encounter a failure, I try to fallback to another tool, which is why I wouldn't typically "replace" androguard by dex2jar, but use both.