performing-dynamic-analysis-of-android-app

Featured

Performs runtime dynamic analysis of Android applications using Frida, Objection, and Android Debug Bridge to observe application behavior during execution, intercept function calls, modify runtime values, and identify vulnerabilities that static analysis misses. Use when testing Android apps for runtime security flaws, hooking sensitive methods, bypassing client-side protections, or analyzing obfuscated applications. Activates for requests involving Android dynamic analysis, runtime hooking, Frida Android instrumentation, or live app behavior analysis.

AI & Automation 12,642 stars 1468 forks Updated today Apache-2.0

Install

View on GitHub

Quality Score: 99/100

Stars 20%
100
Recency 20%
100
Frontmatter 20%
70
Documentation 15%
100
Issue Health 10%
50
License 10%
100
Description 5%
100

Skill Content

# Performing Dynamic Analysis of Android App ## When to Use Use this skill when: - Static analysis results need runtime validation on an actual Android device - The target app uses obfuscation (DexGuard, custom packers) that prevents effective static analysis - Testing requires observing actual API calls, decrypted data, or runtime-generated values - Assessing root detection, tamper detection, or anti-debugging implementations **Do not use** this skill on production environments without authorization -- dynamic instrumentation can alter app behavior and trigger security alerts. ## Prerequisites - Rooted Android device or emulator (Genymotion, Android Studio AVD with writable system) - Frida server installed on device matching the architecture (arm64, x86_64) - Python 3.10+ with `frida-tools` and `objection` packages - ADB configured and device connected - Target APK installed on device ## Workflow ### Step 1: Setup Frida Server on Android Device ```bash # Check device architecture adb shell getprop ro.product.cpu.abi # Output: arm64-v8a # Download matching Frida server from GitHub releases # https://github.com/frida/frida/releases # Push to device adb push frida-server-16.x.x-android-arm64 /data/local/tmp/frida-server adb shell chmod 755 /data/local/tmp/frida-server adb shell /data/local/tmp/frida-server & # Verify Frida connection frida-ps -U ``` ### Step 2: Enumerate Application Attack Surface ```bash # List all packages frida-ps -U -a # Attach Objection for hi...

Details

Author
mukul975
Repository
mukul975/Anthropic-Cybersecurity-Skills
Created
3 months ago
Last Updated
today
Language
Python
License
Apache-2.0

Similar Skills

Semantically similar based on skill content — not just same category

AI & Automation Listed

analyzing-ios-app-security-with-objection

Performs runtime mobile security exploration of iOS applications using Objection, a Frida-powered toolkit that enables security testers to interact with app internals without jailbreaking. Use when assessing iOS app security posture, bypassing client-side protections, dumping keychain items, inspecting filesystem storage, and evaluating runtime behavior. Activates for requests involving iOS security testing, Objection runtime analysis, Frida-based iOS assessment, or mobile runtime exploration.

6 Updated today
26zl
AI & Automation Featured

analyzing-ios-app-security-with-objection

Runtime iOS app security testing with Objection (Frida): inspect keychain and filesystem data, explore app internals at runtime, and validate/bypass client-side protections during authorized mobile assessments.

12,642 Updated today
mukul975
AI & Automation Featured

reverse-engineering-ios-app-with-frida

Reverse engineers iOS applications using Frida dynamic instrumentation to understand internal logic, extract encryption keys, bypass security controls, and discover hidden functionality without source code access. Use when performing authorized iOS penetration testing, analyzing proprietary protocols, understanding obfuscated logic, or extracting runtime secrets from iOS binaries. Activates for requests involving iOS reverse engineering, Frida iOS hooking, Objective-C/Swift method tracing, or iOS binary analysis.

12,642 Updated today
mukul975
AI & Automation Featured

performing-ios-app-security-assessment

Performs comprehensive iOS application security assessments using Frida for dynamic instrumentation, Objection for runtime exploration, SSL pinning bypass for traffic interception, keychain extraction for credential analysis, and IPA static analysis for binary-level review. Use when conducting authorized iOS penetration tests, evaluating mobile app security posture against OWASP MASTG, or assessing iOS app data protection and transport security controls. Activates for requests involving iOS app pentesting, Frida-based iOS instrumentation, mobile app SSL pinning bypass, or IPA reverse engineering.

12,642 Updated today
mukul975
Testing & QA Solid

mobile-security-testing-skill

Android and iOS application security testing

1,034 Updated today
a5c-ai