Argus-SAF
Argus-SAF copied to clipboard
arguslab
Argus static analysis framework
Amandroid is not detecting data flows to sinks that goes to anonymous innerclass from a source defined outside the innerclass. Did somebody face the same issue or can somebody tell...
Hi, I got different number of taint paths when I ran Amandroid using CLI Tool (argus-saf_2.12-3.2.0-assembly.jar) and the one I imported into IntelliJ. In IntelliJ, the entry is set to...
I'm trying to write a code to extract all ICC activities from a single APK. Similar to the code in [issue 45](https://github.com/arguslab/Argus-SAF/issues/45), i tried to extract RPC calls using the...
Suppose the putExtra method of Intent is used as a sink which takes a key value parameter. For example L1 : Intent i = new Intent() L2: i.putExtra("Key","Value") from L2...
I decompiled some app(one of them is qqlite) using the following settings(code): ```Java val reporter = new DefaultReporter val yard = new ApkYard(reporter) val layout = DecompileLayout(decompilePath) val strategy =...
Hello! ### A little background I am writing a framework to launch android static security implementations. I want to include Argus-SAF ### Issue I have a (small) test apk, to...
After few test, it still have infinite loop for few apks, I need to do more test to figure out the issue.
Hi, thanks for the nice tool. In your Amandroid paper, you said that API misuse checker will be done as a plugin after generating inter-procedural data dependency graph (DDG). The...
Hi, I've download the apk from quite famous mobile app such as signal and apk, from apk mirrow but it seems that your code is not able to manage them....
Hi, I am using Amandroid Jar i.e. argus*.jar for finding ICC Links of our own constructed apps. For many cases, it gives false positives. For. e.g. in attached apk, there...
