MARA - Mobile Application Reverse engineering and Analysis Framework

MARA is a Mobile Application Reverse engineering and Analysis Framework. It is a tool that puts together commonly used mobile application reverse engineering and analysis tools, to assist in testing mobile applications against the OWASP mobile security threats. Its objective is to make this task easier and friendlier to mobile application developers and security professionals.

MARA is developed and maintained by @xtian_kisutsa and @iamckn. It is in its very early stages of development and there is a lot more to come, in line with our roadmap. Any contributions and suggestions to the tool will be highly appreciated.

Features supported

APK Reverse Engineering

Disassembling Dalvik bytecode to smali bytecode via baksmali and apktool
Disassembling Dalvik bytecode to java bytecode via enjarify
Decompiling APK to Java source code via jadx

APK Deobfuscation

APK deobfuscation via [apk-deguard.com] (https://www.apk-deguard.com/)

APK Analysis

Parsing smali files for analysis via smalisca
Dump apk assets, libraries, and resources
Extracting certificate data via openssl
Extract strings and app permissions via aapt
Identify methods and classes via ClassyShark
Scan for apk vulnerabilities via androbugs
Analyze apk for potentially malicious behavior via androwarn
Identify compilers, packers, and obfuscators via APKiD
Extract execution paths, IP addresses, URL, URI, emails via regex

APK Manifest Analysis

Extract Intents
Extract exported activities
Extract receivers
Extract exported receivers
Extract Services
Extract exported services
Check if apk is debuggable
Check if apk allows backups
Check if apk allows sending of secret codes
Check if apk can receive binary SMS

Domain Analysis

Domain SSL scan via pyssltest and testssl
Website fingerprinting via whatweb

Security Analysis

Source code static analysis based on OWASP Top Mobile Top 10 and the OWASP Mobile Apps Checklist
MARA is capable of performing either single or mass analysis of apk, dex or jar files.

Additional information about the framework, prerequisites and the installation guide is available on the wiki

June 19, 2020

0 Comments

Inline Feedbacks

View all comments

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

MARA is a Mobile Application Reverse engineering and Analysis Framework.

Features supported

APK Reverse Engineering

APK Deobfuscation

APK Analysis

APK Manifest Analysis

Domain Analysis

Security Analysis

https://hakin9.org/wp-content/uploads/2023/06/hakin9_logo.svg

Download Free eBook

MARA is a Mobile Application Reverse engineering and Analysis Framework.

Features supported

APK Reverse Engineering

APK Deobfuscation

APK Analysis

APK Manifest Analysis

Domain Analysis

Security Analysis

Thank you!

https://hakin9.org/wp-content/uploads/2023/06/hakin9_logo.svg

Download Free eBook