Analysis updated 2026-05-18
Automatically detect root detection code inside an Android APK during a security audit.
Generate ready-to-run Frida scripts that bypass only the specific SSL pinning found.
Produce an HTML and JSON report of a mobile app's security protections.
Use optional AI analysis to catch obfuscated or custom security checks.
| whitehat987/apkshield-pt | 0whitedev/detranspiler | 2951461586/mulerun-pool | |
|---|---|---|---|
| Stars | 21 | 21 | 21 |
| Language | Python | Python | Python |
| Setup difficulty | hard | hard | moderate |
| Complexity | 4/5 | 4/5 | 3/5 |
| Audience | developer | developer | developer |
Figures from each repo's GitHub metadata at analysis time.
Designed for Kali Linux with apktool, jadx, and Frida installed, only for authorized testing with written permission.
APKShield-PT is a Python tool for Android penetration testing, the practice of security professionals legally probing an app for vulnerabilities. It automates two specific tasks that are common in mobile security assessments: detecting and bypassing root detection, and detecting and bypassing SSL certificate pinning. Root detection is code inside an Android app that checks whether it's running on a rooted (jailbroken) device and refuses to work if so. SSL pinning is a security technique where an app only accepts a specific trusted certificate, preventing security researchers from intercepting its network traffic with a proxy. Both protections make security testing difficult, so bypassing them is a standard step in a security audit of a mobile app. The tool takes an Android APK file (an app package), decompiles it using apktool and jadx (two open-source Android reverse engineering tools), analyzes the Java source and bytecode for 14 categories of root detection patterns and 15 categories of SSL pinning patterns, then automatically generates Frida scripts targeting exactly what it found. Frida is a dynamic instrumentation toolkit, it injects code into a running app to modify its behavior at runtime. The generated scripts bypass only the specific protections detected, rather than using generic hooks. An optional AI analysis mode (using Anthropic's API) can find obfuscated or custom security checks that pattern matching might miss. The tool outputs an HTML and JSON report plus ready-to-run Frida script files. The tech stack is Python 3.10 or later and is designed for Kali Linux. It is intended only for authorized penetration testing with written permission. The full README is longer than what was provided.
A Python tool for authorized Android penetration testing that auto-detects and bypasses root detection and SSL pinning.
Mainly Python. The stack also includes Python, apktool, jadx.
Setup difficulty is rated hard, with roughly 1h+ to a first successful run.
Mainly developer.
This repo across BitVibe Labs
Verify against the repo before relying on details.