GitPlanet

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details
All Projects → OMirzaei → AndrODet

OMirzaei / AndrODet

Licence: other
AndrODet: An Adaptive Android Obfuscation Detector

Programming Languages

python
139335 projects - #7 most used programming language
c
50402 projects - #5 most used programming language
java
68154 projects - #9 most used programming language
C++
36643 projects - #6 most used programming language

Labels

androidobfuscationmalwareanalysisanti-analysis

Projects that are alternatives of or similar to AndrODet

silencio
Silencio is a Java library for transforming and converting XML, JSON, YAML, Properties and other formats. It is applicable for most operations such as obfuscation, encryption, minimisation (minifying), anonymous. Library is fully customizable and extensible.
Stars: ✭ 23 (-8%)
Mutual labels:  obfuscation
Deobfuscation
Binary Deobfuscation Series
Stars: ✭ 15 (-40%)
Mutual labels:  obfuscation
mumbojumbo
Obfuscates golang strings
Stars: ✭ 29 (+16%)
Mutual labels:  obfuscation
malware-writeups
Personal research and publication on malware families
Stars: ✭ 104 (+316%)
Mutual labels:  malwareanalysis
email-concealer
Conceal e-mail addresses in a string by replacing their domain
Stars: ✭ 47 (+88%)
Mutual labels:  obfuscation
dark-lord-obama
AV-evading Pythonic Reverse Shell with Dynamic Adaption Capabilities
Stars: ✭ 61 (+144%)
Mutual labels:  obfuscation
Powershell-Obfuscator
Powerful script for logical obfuscation of powershell scripts
Stars: ✭ 27 (+8%)
Mutual labels:  obfuscation
UniObfuscator
Java obfuscator that hides code in comment tags and Unicode garbage by making use of Java's Unicode escapes.
Stars: ✭ 40 (+60%)
Mutual labels:  obfuscation
id-mask
IDMask is a Java library for masking internal ids (e.g. from your DB) when they need to be published to hide their actual value and to prevent forging. It has support optional randomisation has a wide support for various Java types including long, UUID and BigInteger. This library bases its security on strong cryptographic primitives.
Stars: ✭ 39 (+56%)
Mutual labels:  obfuscation
obfuscator
Obfuscate PHP source files with basic XOR encryption in userland code at runtime.
Stars: ✭ 20 (-20%)
Mutual labels:  obfuscation
ConfuserExPlugins
Transforms all types to generics, and all constructor calls and method calls into generic call factories.
Stars: ✭ 32 (+28%)
Mutual labels:  obfuscation
Discord-AIO
Discord AIO (All In One) - discord stealer/token grabber builder with token checks, webhook spammer, obfuscation, encryption, crypto miner, RAT and a lot of extra features.
Stars: ✭ 105 (+320%)
Mutual labels:  obfuscation
data obfuscation
Data Obfuscation for C/C++ Code Based on Residue Number Coding (RNC)
Stars: ✭ 15 (-40%)
Mutual labels:  obfuscation
Alom
Alom PHP Obfuscator / Encoder can protect from your codes
Stars: ✭ 50 (+100%)
Mutual labels:  obfuscation
ConfuserEx-Mod-By-Bed
Beds Protector | Best free obfuscation out right now
Stars: ✭ 297 (+1088%)
Mutual labels:  obfuscation
rusty-jsyc
JavaScript-To-Bytecode compiler written in Rust
Stars: ✭ 109 (+336%)
Mutual labels:  obfuscation
defendjs
A free and open source JavaScript and Node.js obfuscator.
Stars: ✭ 26 (+4%)
Mutual labels:  obfuscation
Networkteam.Neos.MailObfuscator
Email address obfuscation for Neos CMS
Stars: ✭ 13 (-48%)
Mutual labels:  obfuscation
idy
👓 An ID obfuscator for ActiveRecord
Stars: ✭ 15 (-40%)
Mutual labels:  obfuscation
jit obfuscation poc
Using GNU lightning to generate xor deobfuscation at runtime
Stars: ✭ 23 (-8%)
Mutual labels:  obfuscation
View All Similar Projects ➔

AndrODet: An Adaptive Android Obfuscation Detector

VERSION:

Version (by release date): 2019-11-25

DEVELOPER INFORMATION:

Name: Omid Mirzaei
Laboratory: Computer Security Lab (COSEC)
University: Universidad Carlos III de Madrid
Website: https://0m1d.com/software/AndrODet

PUBLICATION:

AndrODet: An Adaptive Android Obfuscation Detector
O. Mirzaei, J. M. de Fuentes, J. E. Tapiador, L. Gonzalez-Manzano
Future Generation Computer Systems, Elsevier (January 2019)

INSTALLATION INSTRUCTIONS:

AndrODet is now upgraded to be compatible with python 3. There are two ways through which you can easily install and run AndrODet:

1. pipenv install & pipenv shell
2. pip install -U -r requirements.txt

USAGE:

AndrODet has one main module which is used for feature extraction, testing and training incrementally. To run AndrODet, you need to build up your dataset of obfuscated apps initially. Three sub-directories are needed to be considered for this purpose within your apps directory, including IR, SE and CF which do contain apps that are either obfuscated ('YES') or not ('NO') by one of the following techniques:

  1. Identifier renaming
  2. String encryption
  3. Control flow obfuscation

In the next step, you just need to run the below command in the terminal to start AndrODet:

python AndrODet_MOA.py -a '/Directory/of/apps' -d '/Directory/of/dexdump' -g '/Directory/of/androguard' -o '/Directory/of/output'

Once the above command is executed, the system starts to extract features from applications, testing, and, then, training the system on the fly. At the end, a confusion matrix is shown to the user.

Note: The dexdump disassembler uploaded to this repository is for Mac operating system. You may need to download the relevant variant of this tool and replace it with the current one based on your operating system.

COPYRIGHT NOTICE:

All rights reserved for the above authors and research center. Please, look at the "License.txt" file for more detailed information regarding the usage and distribution of these source codes.

ACKNOWLEDGEMENT:

This work has been partially supported by MINECO grant TIN2016-79095-C2-2-R (SMOG-DEV) and CAM grant S2013/ICE-3095 (CIBERDINE), co-funded with European FEDER funds. Furthermore, it has been partially supported by the UC3M’s grant Programa de Ayudas para la Movilidad. The authors would like to thank the Allatori technical team for its valuable assistance, and, also, the authors of the AMD and PraGuard datasets which made their repositories available to us.

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].