SimoneAvogadro / android-reverse-engineering-skill

· Source: Github Trending: All languages · Field: Technology & Digital — Software Development & Engineering, Cybersecurity & Data Privacy, Artificial Intelligence & Machine Learning · Depth: Intermediate, quick

Summary

A new Claude Code skill enables the decompilation of Android APK, XAPK, JAR, and AAR files to extract and document HTTP APIs without requiring the original source code. This tool utilizes `jadx` and optionally `Fernflower` or `Vineflower` for decompilation, supporting single-engine or side-by-side comparisons. It identifies Retrofit endpoints, OkHttp calls, hardcoded URLs, and authentication patterns, while also tracing call flows from UI components to HTTP requests. The skill analyzes app structure, including manifests and architecture, and incorporates strategies for navigating obfuscated code produced by ProGuard/R8. It requires Java JDK 17+ and `jadx`, with `Vineflower` or `Fernflower` and `dex2jar` recommended for enhanced functionality.

Key takeaway

For security researchers or malware analysts needing to understand Android application behavior without source code, this Claude Code skill streamlines the reverse engineering process. You can quickly extract critical API endpoints, authentication methods, and call flows, which is invaluable for vulnerability assessment, interoperability analysis, or incident response. Ensure your use complies with all applicable laws and terms of service.

Key insights

Decompile Android apps to extract HTTP API details and call flows, even from obfuscated code.

Principles

Method

The skill decompiles Android binaries using `jadx` (and optionally `Fernflower`/`Vineflower`), then analyzes the resulting source to identify API calls, authentication patterns, and trace call flows from UI components.

In practice

Topics

Code references

Best for: AI Security Engineer, Security Engineer, Research Scientist

Related on AIssential

Open in AIssential →

Editorial summary, takeaway, and curation by AIssential. Original article published by Github Trending: All languages.