FORUMS
Remove All Ads from XDA

[APP][XPOSED] Inspeckage - Android Package Inspector

23 posts
Thanks Meter: 25
 
Post Reply Email Thread
Announcement from acarlosmartins: Inspeckage - Android Package Inspector - v2.3
CHANGELOG

https://github.com/ac-pm/Inspeckage/blob/master/CHANGELOG

Introduction

Inspeckage is a tool developed to offer dynamic analysis of Android applications. With this tool we can better understand what an Android application is doing at runtime.

* https://twitter.com/inspeckage
* https://play.google.com/store/apps/details?id=mobi.acpm.inspeckage

How it works?

It is a simply application (apk) with an internal HTTP server providing a friendly web interface.

Features

Information gathering
  • Requested Permissions
  • App Permissions
  • Shared Libraries
  • Exported Activities and Non Exported Activities
  • Exported Content Provider and Non Exported Content Provider
  • Exported Services and Non Exported Services
  • Exported Broadcast Receiver and Non Exported Broadcast Receiver
  • If is Debuggable
  • Version, UID and GIDs
  • etc

Hooks (until now)

With the hooks, we can see what the application is doing in real time.
  • Shared Preferences (log and file)
  • Serialization
  • Crypto
  • Hash
  • SQLite
  • HTTP (a http proxy tool it is still the best alternative)
  • File System
  • Miscellaneous (Clipboard, URL.Parse())
  • WebView
  • IPC

Actions

With the Xposed is possible do some actions like start a not exported activity!
  • Start any activity (exported and non exported)
  • Calling any provider (exported and non exported)
  • Disable FLAG_SECURE
  • SSL uncheck
  • Start, close and restart the application

Extras
  • APK Download
  • View the app's directory tree
  • Download the app files
  • Download the output generated by hooks in text file format
  • Printscreen

Configuration

Even with some hooks at HTTP libraries, using an external proxy tool it is still the best alternative to analyze the traffic.
  • Add a proxy to the target app
  • Enable and disable proxy
  • Add entries in the arp table

Requirements
  • Xposed Framework

Download

http://repo.xposed.info/module/mobi.acpm.inspeckage

Source Code

https://github.com/ac-pm/Inspeckage

Screenshots

Tab Screenshot

Reporting bugs

For bug reports and feature requests, please post them in the GitHub Issues page.

Genymotion

I made a small tutorial on how to get it ready for Inspeckage.

https://vimeo.com/156745941



XDA:DevDB Information
Inspeckage, Xposed for all devices (see above for details)

Contributors
acarlosmartins
Source Code: https://github.com/ac-pm/Inspeckage

Xposed Package Name: mobi.acpm.inspeckage

Version Information
Status: Stable
Current Stable Version: 1.4.1
Stable Release Date: 2016-07-19

Created 2016-02-29
Last Updated 2017-05-26
The Following 11 Users Say Thank You to acarlosmartins For This Useful Post: [ View ] Gift acarlosmartins Ad-Free
 
 
29th February 2016, 02:02 AM |#2  
HorstiG's Avatar
Senior Member
Flag Banja Luka RS
Thanks Meter: 2,333
 
More
Crash on Marshmallow 6.x Stock LG G4,

Does not work with Adguard.

http://forum.xda-developers.com/andr...-root-t2958895
The Following User Says Thank You to HorstiG For This Useful Post: [ View ] Gift HorstiG Ad-Free
29th February 2016, 03:04 AM |#3  
Senior Member
Thanks Meter: 86
 
More
great working like charm on sgs4 aosp lollipop rom
29th February 2016, 05:56 AM |#4  
BIade's Avatar
Senior Member
Flag Cologne
Thanks Meter: 476
 
More
Nice one. Was looking for something like this for a long time. Will test it 2morrow. Hope the times of catlog are over :P

Thanks for your work
29th February 2016, 01:26 PM |#5  
OP Junior Member
Flag Recife
Thanks Meter: 25
 
More
Quote:
Originally Posted by HorstiG

Crash on Marshmallow 6.x Stock LG G4,

Does not work with Adguard.

http://forum.xda-developers.com/andr...-root-t2958895

Sorry, but it worked for me.

http://i.imgur.com/hQ3gEGM.png

Look, if the app does not use some libs, the tabs will be blank.

I'm testing with Genimotion android 5.1.0 API 22.
The Following User Says Thank You to acarlosmartins For This Useful Post: [ View ] Gift acarlosmartins Ad-Free
9th March 2016, 02:10 PM |#6  
sm4rk0's Avatar
Junior Member
Flag Zrenjanin
Thanks Meter: 7
 
More
Awesome tool! Thank you!
10th March 2016, 09:15 PM |#7  
Junior Member
Thanks Meter: 1
 
More
I see `App is running: false`, and when app started. `The app is running?` Module enable: true | Version: 1.1b
Nexus 6, CM-13.0-20160305-NIGHTLY-shamu
12th March 2016, 06:21 AM |#8  
defim's Avatar
Senior Member
Thanks Meter: 1,381
 
More
@acarlosmartins: Please remove the "#" in front of the name at xposed repo
12th March 2016, 04:26 PM |#9  
OP Junior Member
Flag Recife
Thanks Meter: 25
 
More
Quote:
Originally Posted by defim

@acarlosmartins: Please remove the "#" in front of the name at xposed repo

Done! Thank you for reminding me.

http://repo.xposed.info/module/mobi.acpm.inspeckage
The Following User Says Thank You to acarlosmartins For This Useful Post: [ View ] Gift acarlosmartins Ad-Free
12th March 2016, 04:29 PM |#10  
OP Junior Member
Flag Recife
Thanks Meter: 25
 
More
Quote:
Originally Posted by d34dr00t

I see `App is running: false`, and when app started. `The app is running?` Module enable: true | Version: 1.1b
Nexus 6, CM-13.0-20160305-NIGHTLY-shamu

I will investigate. Thanks for the feedback!
20th April 2016, 02:50 AM |#11  
Member
Thanks Meter: 14
 
More
Seems like a very nice app. Working well on my Lollipop device. Thanks!

Can you explain a bit more about what some of the features do, for example I see the app I launch says debuggable: no, what determines that?

Also The app I launched does make http requests but none showed up in the http tab, also what does the crypto tab show? that is probably the most interesting thing for me as someone interested in reverse engineering, is it possible to see clear text information that it is encrypting?
Post Reply Subscribe to Thread

Guest Quick Reply (no urls or BBcode)
Message:
Previous Thread Next Thread
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes