ASTLI finds libraries (.jar) in obfuscated Android applications (.apk). First, ASTLI learns libraries by extracting fingerprints that are derived from its abstract syntax tree and from its method signatures. Then, ASTLI matches fingerprints against an application and gives an estimate on how likely the library is present in the application. See [1] for a detailed explanation of the process and the evaluation. Cite [2] if you use this work.
dx.jarfrom Android SDK Build Tools- Tested with OpenJDK 8
git clone https://github.com/kstudent/astlicd astli- Copy
dx.jaror create symlink todx.jarinastli/lib/ - Build with
./gradlew jar(run./gradlew tasksto see all tasks)
Run java -jar astli.jar to list all options and parameters.
ASTLI is a research prototype, and, although ASTLI has been extensively evaluated with FOSS applications, one may encounter edge cases that ASTLI cannot handle.
[1] Rabensteiner, Christof: Android Library Identification (Master's Thesis); 2017; http://diglib.tugraz.at/download.php?id=5988e795a35ec&location=search
[2] Feichtner, Johannes, and Rabensteiner, Christof: Obfuscation-Resilient Code Recognition in Android Apps; ARES 2019;