explaingit

ashishb/android-security-awesome

9,403MakefileAudience · researcherComplexity · 1/5Setup · easy

TLDR

A maintained index of Android security tools, academic papers, and known exploits, a single organized starting point for security researchers and mobile developers who need to find the right analysis tool or research paper fast.

Mindmap

mindmap
  root((android-security))
    Tools
      Online APK scanners
      Static analysis
      Dynamic analysis
      Reverse engineering
    Research material
      Academic papers
      Books
      Conference talks
    Exploit tracking
      Known CVEs
      Vulnerability reports
    Maintenance
      Automated link checks
      Community contributions
Click or tap to explore — scroll the page freely

Code map

Detail Auto

An interactive map of this repo's files and how they connect — its source is parsed live in your browser. Click Visualize to build it.

filefunction / class

Things people build with this

USE CASE 1

Find the right static analysis tool to scan your Android app for vulnerabilities before publishing it

USE CASE 2

Locate academic papers on a specific Android security topic without searching across multiple academic databases

USE CASE 3

Discover free online APK analysis services to inspect a suspicious app file without setting up your own toolchain

Tech stack

Makefile

Getting it running

Difficulty · easy Time to first run · 5min

In plain English

This repository is a curated list of resources related to Android security. It does not contain code you run or install. Instead, it is a maintained index of links pointing to tools, academic papers, research publications, books, and information about known exploits and vulnerabilities in the Android platform. The list is organized into three main sections. The first covers tools, which includes online services for analyzing Android app files (APKs), static analysis tools that inspect code without running it, dynamic analysis tools that observe apps while they run, and tools for reverse engineering compiled Android applications. Each tool entry notes whether it is free or paid, and entries for services that have shut down are crossed out rather than deleted, preserving the historical record. The second section points to academic and research material: university publications, books, and conference papers on Android security topics. The third section tracks known exploits, vulnerabilities, and bugs in the Android ecosystem. The project runs automated checks to verify that all links are still alive, so the list stays accurate over time. Contributors can submit additions or corrections through pull requests. This kind of resource is most useful to security researchers, mobile developers who want to check their apps for vulnerabilities before release, and students studying mobile security. Because Android runs on billions of devices and apps often handle sensitive personal data, the field of Android security is broad and active, and having a single organized starting point saves significant time when looking for the right tool or paper for a specific task.

Copy-paste prompts

Prompt 1
From the android-security-awesome list, which tools support static analysis of APKs compiled from Kotlin source, and what are their key differences?
Prompt 2
I want to set up a dynamic analysis sandbox for Android apps. Which tools from android-security-awesome should I combine, and in what order?
Prompt 3
Find papers in android-security-awesome that cover TrustZone or secure enclave attacks on Android, summarize their findings
Prompt 4
Which online APK scanning services in android-security-awesome are still active and free, and what does each one detect?
Open on GitHub → Explain another repo

← ashishb on gitmyhub — every repo by this author, as a profile.

Verify against the repo before relying on details.