We are a group of students that have been developing an Android application analyzer for our final master’s degree project. We have decided to develop it in Rust, and after some months, the software is ready to be made public. It’s still in its early stages of development, but it’s looking great!
The tool analyzes .apk files (we still depend in some external tools for decompiling the app) and reports potential vulnerabilities, such as SQL Injection, XSS atacks, plain-text passwords… and bad practices, and it generates a pretty report with code highlighting etc.
It’s incredibly fast, thanks to Rust, and all the detection rules can be personalized
Check it out!