Identify new trackers

[U039b]

In https://reports.exodus-privacy.eu.org/reports/37/:

• com/applovin/adview/AppLovinInterstitialAdDialog
• com/avocarrot/sdk/nativeassets/model/NativeAdData
• com/appnext/ads/
• com/inlocomedia/android/ads/AdType
• com/moat/analytics/mobile/aol/NativeVideoTracker
• com/mopub/common/GpsHelper
• com/nativex/monetization/mraid/objects/CurrentPosition
• com/unity3d/ads/android/UnityAds
• com/vungle/publisher/AdConfig
• com/youappi/ai/sdk/YouAPPi Why the fuck this application requires org/apache/commons/math3/optimization?

[U039b]

To add a new tracker, follow this schema of description:

### Tracker name
* Website: xxxx
* Comment: xxxx
* Category: [Analytics, Advertising]
* Code signature: `xxx`
* Network signature: `xxx.com`
* Maven repository: `xxx.com`
* Artifact ID: `xxx`
* Group ID: `xxx` 
* Gradle: `xxx`
* Additional links: xxx xxx
* Notes: xxx

[U039b]

AppLovin

• Website: https://www.applovin.com/
• Comment: AppLovin is a mobile advertising technology company that enables brands to create mobile marketing campaigns that are fueled by data.
• Category: Advertising
• Code signature: com.applovin.
• Network signature: applovin\.com
• Maven repository: NA
• Artifact ID: applovin-sdk
• Group ID: com.applovin
• Gradle: com.applovin:applovin-sdk:7.6.0
• Additional links: Crunchbase
• Notes: AppLovin SDK requires Google Ads Identifier com.google.android.gms.ads.identifier.*

Avocarrot

• Website: https://www.avocarrot.com/
• Comment: Avocarrot is a native mobile advertising platform which provides real rewards on mobile apps.
• Category: Advertising
• Code signature: com.avocarrot.sdk
• Network signature: \.avocarrot\.com
• Maven repository: https://s3.amazonaws.com/avocarrot-android-builds/dist/
• Artifact ID: mediation-sdk-nativead
• Group ID: com.avocarrot.sdk
• Gradle: com.avocarrot.sdk:mediation-sdk-nativead:4.7.1
• Additional links: Crunchbase Dev doc
• Notes: Uses Google Ads

NativeX

• Website: http://www.nativex.com/
• Comment: NativeX is the leading ad technology for mobile games.
• Category: Advertising
• Code signature: com.nativex.
• Network signature: mobvista\.com|nativex\.com
• Maven repository: NC
• Artifact ID: NC
• Group ID: NC
• Gradle: NC
• Additional links: Crunchbase NativeX Android SDK Dev doc
• Notes: Acquired by MobVista

[seandiggity]

trying to untangle Baidu location tracking... the maps and location are so closely related in the code I've seen.

Baidu Maps

• Website: https://map.baidu.com
• Comment: Baidu is the Web giant in China, the homegrown counterpart to Google.
• Category: Maps, Location
• Code signature: com.baidu.BaiduMap
• Network signature: map.baidu\.com
• Maven repository: NA
• Artifact ID: NC
• Group ID: com.baidu
• Gradle: NC
• Additional links: Android SDK documentation, iOS SDK
• Notes: "Baidu uses millions of users’ location data to make predictions", New Scientist

WeChat Location

• Website: https://wechat.com, https://weixin.qq.com
• Comment: WeChat is the most popular chat client in China and may become the official app for state identification.
• Category: Maps, Location
• Code signature: com.tencent.map.geolocation|com.tencent.mm.plugin.location.|com.tencent.mm.plugin.location_soso.|com.tencent.mm.plugin.location_google.
• Network signature: map.qq\.com
• Maven repository: NA
• Artifact ID: NC
• Group ID: com.tencent
• Gradle: NC
• Additional links: Reverse-engineered WeChat code
• Notes: "WeChat poised to become China’s official electronic ID system", South China Morning Post

[seandiggity]

A quick note - older versions of Tune tracker use the com.mobileapptracker name for the SDK.

Tune

• Code signature: com.tune|com.mobileapptracker

[seandiggity]

Updates to SafeGraph. Much more detail at https://github.com/YalePrivacyLab/tracker-profiles/blob/master/trackers/SafeGraph.md

SafeGraph OpenLocate

• Website: https://www.safegraph.com, https://github.com/OpenLocate
• Comment: SafeGraph specializes in the collection of physical location data for data mining and analytics. OpenLocate is the SDK announced in 2017.
• Category: [Location]
• Code signature: com.safegraph.|com.openlocate
• Network signature: api\.safegraph\.com
• Maven repository: https://s3-us-west-2.amazonaws.com/openlocate-android/
• Artifact ID: openlocate-android
• Group ID: com.openlocate
• Gradle: com.openlocate:openlocate:1.+
• Additional links: OpenLocate SDK repo, Crunchbase, Stanford economics paper, Washington Post, The Outline
• Notes: SafeGraph collected 17 trillion location markers for 10 million smartphones in November 2016. OpenLocate SDK for Android is MIT/Expat licensed.

[seandiggity]

HyperTrack

• Website: http://hypertrack.com, https://github.com/hypertrack
• Comment: HyperTrack implements live location sharing and activity tracking.
• Category: [Maps, Location]
• Code signature: com.hypertrack.|com.hypertracklive.|io.hypertrack.
• Network signature: trck.at|hypertrack\.amazonaws.com|api\.hypertrack\.com
• Maven repository: http://hypertrack-android-sdk.s3-website-us-west-2.amazonaws.com/
• Artifact ID: hypertrack-live-android
• Group ID: com.hypertrack
• Gradle: com.hypertrack:android:0.4.22:release@aar
• Additional links: HyperTrack SDK repo, Documentation
• Notes: HyperTrack SDK for Android is MIT/Expat licensed.

[seandiggity]

Uber Analytics

• Website: https://uber.com
• Comment: Uber Analytics tracks location and behavior as part of its suite of apps such as Uber, UberEATS, and Uber Driver.
• Category: Location, Analytics
• Code signature: com.ubercab.analytics.|com.ubercab.library.metrics.analytics.|com.ubercab.client.core.analytics.
• Network signature: events.uber.com
• Maven repository: NA
• Artifact ID: NC
• Group ID: com.ubercab
• Gradle: NC
• Additional links: Dissassembled Uber code, Reverse-engineered Uber code
• Notes: Uber acquired map and location startup deCarta, which included data and maps from TomTom.

[seandiggity]

Lisnr

• Website: http://lisnr.com
• Comment: LISNR tracks users via audio beacons in retail outlets, as well as collecting behavioral data on a mobile device. Retailers broadcast a "Smart Tone" on speaker systems and LISNR reacts to the sound.
• Category: [Audio Beacon, Analytics]
• Code signature: com.lisnr.|com.lisnr.sdk.
• Network signature: lisnr\.com
• Maven repository: NA
• Artifact ID: NC
• Group ID: com.lisnr.sdk
• Gradle: com.lisnr.sdk:sdk:5.0.0.+
• Additional links: LISNR demo app repo, "Privacy Threats through Ultrasonic Side Channels on Mobile Devices", Technische Universit at Braunschweig
• Notes:

[seandiggity]

SilverPush

• Website: http://silverpush.co, http://silverpush.com
• Comment: SilverPush tracks users via audio beacons in retail outlets, as well as collecting behavioral and location data on a mobile device. Retailers broadcast a ultrasonic tone on speaker systems and SilverPush reacts to the sound.
• Category: [Audio Beacon, Analytics]
• Code signature: com.silverpush.|com.silverpush.location|com.silverpush.sdk.android.SPService
• Network signature: silverpush\.co|silverpush\.com|54.243.73.253:8080/SilverPush/
• Maven repository: NA
• Artifact ID: NC
• Group ID: com.silverpush
• Gradle: NC
• Additional links: "SilverPush Unmasked" repo, "Privacy Threats through Ultrasonic Side Channels on Mobile Devices", Technische Universit at Braunschweig
• Notes:

[seandiggity]

Shopkick

• Website: https://shopkick.com
• Comment: Shopkick tracks users via "shopBeacon" beacons (Apple iBeacons) in retail outlets, as well as collecting behavioral and location data on a mobile device.
• Category: [Audio Beacon, Bluetooth Beacon, Analytics]
• Code signature: com.shopkick.sdk.api.|com.shopkick.fetchers.
• Network signature: shopkick\.com|shopkick\.de|sdk.shopkick.com
• Maven repository: NA
• Artifact ID: NC
• Group ID: com.shopkick
• Gradle: NC
• Additional links: Shopkick on Github, Shopkick on Anaconda Cloud, Shopkick on Docker Hub, "Privacy Threats through Ultrasonic Side Channels on Mobile Devices", Technische Universit at Braunschweig
• Notes: Shopkick is a very popular shopping app "companion" used by millions. Shopkick has a close relationship with Scandit barcode scanner SDK.

[seandiggity]

Alphonso

• Website: http://alphonso.tv
• Comment: Alphonso listens to audio signals in TV advertisements and is included in games and other apps for children.
• Category: [Audio Beacon, Analytics]
• Code signature: tv.alphonso.service
• Network signature: prov.alphonso.tv|api.alphonso.tv
• Maven repository: NA
• Artifact ID: NC
• Group ID: tv.alphonso
• Gradle: NC
• Additional links: Presentation about TV ads data from Alphonso, "That Game on Your Phone May Be Tracking What You’re Watching on TV", New York Times
• Notes: Alphonso SDK makes heavy use of the Google Admob mediation service.

[seandiggity]

Smaato

• Website: https://smaato.com
• Comment: Smaato is a mobile ad platform that includes video ads.
• Category: [Advertising, Analytics]
• Code signature: com.smaato.soma.
• Network signature: soma.smaato.net|smaato.net
• Maven repository: NA
• Artifact ID: NC
• Group ID: com.smaato.soma
• Gradle: NC
• Additional links: Smaato SDK Documentation
• Notes:

[seandiggity]

Scandit

• Website: https://scandit.com
• Comment: Scandit is a barcode scanner SDK that offers real-time analytics ("scanalytics") to track what barcodes users have scanned and profile users for targeted advertising.
• Category: [Barcode Scanner, Analytics]
• Code signature: com.scandit.
• Network signature: scandit\.com
• Maven repository: NA
• Artifact ID: scanditsdk-android
• Group ID: com.scandit
• Gradle: ScanditBarcodeScanner
• Additional links: Scandit SDK Documentation, "Scandit launches first-of-its-kind barcode scanning analytics", Analytics Magazine, "Shopkick Partners with Scandit to Boost Consumer Engagement with Products in Store", PRWeb, Shopkick Case Study
• Notes: Shopkick is a close partner with Scandit.

[seandiggity]

we need to decide how to handle / untangle Google Maps and Location services as well. At the least, the presence of the location services listener should be considered a tracker.

Google Maps

• Code signature: com.google.android.gms.maps

Google Location Service

• Code signature: com.google.android.gms.location

[U039b]

Inrix

• Website: http://inrix.com/
• Comment: INRIX offers real-time traffic information solutions that help develop traffic data and traffic speed for freeways, highways and arterials.
• Category: Location
• Code signature: com.inrix.sdk
• Network signature: inrix\.com|inrix\.io
• Maven repository: NC
• Artifact ID: NC
• Group ID: NC
• Gradle: NC
• Additional links: Inrix on Crunchbase, Inrix population analytics
• Notes:

[seandiggity]

Signal360

• Website: http://www.signal360.com
• Comment: Signal360 (formerly Sonic Notify) is a leader in proximity marketing via audio beacons and bluetooth beacons in sports stadiums, retail outlets, and vending machines.
• Category: [Audio Beacon, Bluetooth Beacon]
• Code signature: com.signal360.sdk.core.|com.sonicnotify.sdk.core.|com.rnsignal360|
• Network signature: signal360\.com|sonicnotify\.com
• Maven repository: NA
• Gradle: NA
• Group ID: com.signal360.sdk
• Gradle: NA
• Additional links: React Native Bridge for Signal 360 SDK on Github, "Signal360 Is Bringing Sponsor Messaging To NBA Teams And Here’s How To Get Creative With It", Sport Techie
• Notes: Signal360 has partnerships with PlayNetwork, YinzCam, and Coca-Cola Amatil.

[kaputnikGo]

Signal360 use the Manchester decoder for logic 1s and 0s. This is probably similar methodology for other audio beacon companies. http://ww1.microchip.com/downloads/en/AppNotes/01470A.pdf

[seandiggity]

thanks for the heads up, I'm sure you're right about this being the most common method. Some of these audio beacons use amplitude, but that's very limited (FidZup's method, if we trust the patent applications). Most seem to use frequency and what they call "frequency shift keying", which is slight changes in frequencies for 0s and 1s. Hypothetically, they could do much more frequency shifts within that 18kHz to 20kHz range (LISNR claims up to 22kHz but I don't know of devices that have that capability), and then they could do hex or the alphabet even.

What's unclear to me is how they have enough bandwidth to get complex data across the wire... the amount of time that someone is in proximity to a speaker with their microphone could be very limited.

[kaputnikGo]

one technique is this: pulses of 1ms, for 32 ms duration == 32 bits clock pulse (carrier-like) between logic 0 and logic 1 frequency serves as centre freq and start bit. audio as modulated 1s and modulated 0s 20550 to 21000 for logic 0 21000 to 22000 for logic 1

so if the sdk process hears the carrier frequency it can then start listening for the repeated modulated signals, create a historical cache of recorded signals and then process them for any candidates. If we assume the signal is unique to time and location then all the sdk needs to do is ping the server with a heard beacon message of a specific type.

[seandiggity]

we should talk off-thread, but that's potentially ~24KB per minute at most? something like that?

[seandiggity]

Byyd (Adfonic)

• Website: http://byyd.com
• Comment: Formerly Adfonic. "Find you target audience using first- and third-party data about users "
• Category: Analytics
• Code signature: com.adfonic.android.|com.byyd.
• Network signature: byyd\.me|byyd-tech\.com|adfonic\.com
• Maven repository: NA
• Gradle: NA
• Group ID: com.adfonic
• Gradle: NA
• Additional links:
• Notes:

Mixpanel

• Website: https://mixpanel.com
• Comment: "Deeply understand every user's journey with instant insights for everyone on mobile and web."
• Category: Analytics
• Code signature: com.mixpanel.android.
• Network signature: api.mixpanel.com|decide.mixpanel.com
• Maven repository: NA
• Gradle: NA
• Group ID: com.mixpanel
• Gradle: NA
• Additional links:
• Notes:

Phunware

• Website: https://phunware.com
• Comment: "Phunware supports every stage of mobile application lifecycle management. Create the ideal mobile application for your business, build and monetize your app’s audience, and create hyper-personalized mobile experiences with our exclusive data."
• Category: Analytics
• Code signature: com.phunware.analytics.
• Network signature: cms-api.phunware.com|phunware.com
• Maven repository: NA
• Gradle: NA
• Group ID: com.phunware
• Gradle: NA
• Additional links:
• Notes:

Gimbal

• Website: https://gimbal.com
• Comment: "Gimbal helps brands and agencies perfect their marketing relevance for consumers using physical-world data."
• Category: Analytics, Location
• Code signature: com.gimbal.android.
• Network signature: gimbal.com|analytics-server.gimbal.com
• Maven repository: NA
• Gradle: NA
• Group ID: com.gimbal
• Gradle: NA
• Additional links:
• Notes:

[seandiggity]

Google Usage Stats

• Website: http://google.com
• Comment: Android app usage statistics.
• Category: Usage Statistics
• Code signature: android.app.usage.UsageStats|android.app.usage.UsageStatsManager
• Network signature: NA
• Maven repository: NA
• Gradle: NA
• Group ID: android.app.usage
• Gradle: NA
• Additional links: Usage Stats, Usage Stats Manager
• Notes:

[kheops2713]

I just came across Segment (https://segment.com), a tracker that happens to be integrated into Mattermost, a self-hostable chat platform that is very popular now in the FLOSS community.

One of their client, whose use of the data looks the most cynical to me: https://segment.com/customers/xo-group

They do seem to be collecting data from Android as well: https://segment.com/docs/sources/mobile/android/. Interestingly enough, their Android client/library (I am not sure what I am talking about) seems to be open source.

[seandiggity]

Thanks. We do have Segment listed as a tracker in Exodus, but it would be great if you could provide more detail in this thread so that we can fill out the tracker profile more completely. Try to take a look at some of the more detailed profiles above, or the ones we did at https://github.com/YalePrivacyLab/tracker-profiles

https://reports.exodus-privacy.eu.org/trackers/62/

[mildis]

NewRelic

• Website: https://www.newrelic.com
• Comment: App usage stats
• Category: Analytics
• Code signature: com.newrelic.agent
• Network signature: nr-data.net|newrelic.com
• Maven repository:
• Artifact ID: android-agent
• Group ID: com.newrelic.agent.android
• Gradle: com.newrelic.agent.android:android-agent com.newrelic.agent.android:agent-gradle-plugin
• Additional links:
• Notes: Requires android.permission.INTERNET and android.permission.ACCESS_NETWORK_STATE

[seandiggity]

Changes to Signal 360:

Signal360

• Website: http://www.signal360.com
• Comment: Signal360 (formerly Sonic Notify) is a leader in proximity marketing via audio beacons and bluetooth beacons in sports stadiums, retail outlets, and vending machines.
• Category: Audio Beacon, Bluetooth Beacon
• Code signature: com.signal360|com.sonicnotify|com.rnsignal360|
• Network signature: signal360\.com|sonicnotify\.com
• Maven repository: NA
• Gradle: NA
• Group ID: com.signal360
• Gradle: NA
• Additional links: React Native Bridge for Signal 360 SDK on Github, "Signal360 Is Bringing Sponsor Messaging To NBA Teams And Here’s How To Get Creative With It", Sport Techie
• Notes: Signal360 has partnerships with PlayNetwork, YinzCam, and Coca-Cola Amatil.

[seandiggity]

Matomo (Piwik)

• Website: https://matomo.org/mobile
• Comment: Matomo (formerly Piwik) is the leading open-source analytics platform.
• Category: Analytics
• Code signature: org.piwik|org.piwik.mobile|org.matomo
• Network signature: matomo\.org
• Maven repository: NA
• Gradle: NA
• Group ID: org.piwik
• Gradle: NA
• Additional links: Piwik SDK on Github, Matomo Analytics on Github, Matomo Documentation, Matomo API Reference, Matomo on English Wikipedia, Piwik PRO on English Wikipedia
• Notes: Piwik PRO is an enterprise fork of Piwik with proprietary components. 🙌

[kaputnikGo]

Lisnr

add new code signature due to new sdk lib, 6.1.0.0:

• Code signature: com.lisnr.core

[seandiggity]

We've got LISNR here: https://reports.exodus-privacy.eu.org/trackers/79/

And the related Signal360: https://reports.exodus-privacy.eu.org/trackers/86/

LISNR and Signal360 have some kind of business relationship, and it shows in apps by developer YinzCam like this one: https://reports.exodus-privacy.eu.org/reports/1351/

The other big LISNR developer is Aloompa. Please e-mail me with any of their apps we might have missed from the Exodus list above and we'll scan them.

[BillCarsonFr]

AppBrain

• Website: https://www.appbrain.com/info/help/sdk/index.html
• Comment: The AppBrain SDK is present in over 50,000 apps and is downloaded onto millions of phones every day. 2 main services: Promotion: pay-per-install based app promotion to drive installs of your Android app. Monetization: earn money with your app using the interstitials and banners of the AppBrain SDK.
• Category: [Analytics, Advertising]
• Code signature: com.appbrain
• Network signature: ?
• Maven repository: ?
• Artifact ID: NA
• Group ID: NA
• Gradle: com.appbrain:appbrain-sdk:+@aar
• Additional links: https://github.com/swisscodemonkeys/appbrain-sdk http://www.appbrain.com/
• Notes: Launched in 2009 by two former Googlers. Suisse (Zurich) AppBrain is saying to dev that integrate the SDK: It is your sole responsibility to communicate the privacy implications of your use of the AppBrain SDK to your users. http://www.appbrain.com/info/help/sdk/policy.html The potentially privacy sensitive data that’s collected includes the phone model information, phone identifier (Google Advertiser ID), IP address of the phone, country and carrier of the connected mobile network and of the SIM card, and the AppBrain AppMetric™, a token that conveys information about which categories of apps a user is interested in in a privacy-conserving way. Demographic data (gender, age) is only collected when the developer receives this information and forwards it to the AppBrain SDK. When the app has permission to acquire geographic location, this is collected and deleted at most seven days after collection. IP address and phone identifier for COPPA-enabled apps are also deleted at most 7 days after collection.

[BillCarsonFr]

AppAnalytics

• Website: http://appanalytics.io
• Comment: Real-time mobile app analytics for the entire customer lifecycle with event-based analytics, crash analytics, heat map analytics and gesture recognition!
• Category: [Analytics]
• Code signature: io.appanalytics.sdk
• Network signature: ?
• Maven repository: ?
• Artifact ID: ?
• Group ID: ?
• Gradle: NA
• Additional links: http://appanalytics.io/Support#IntegratingSDK
• Notes: Founded 2015, USA (San Jose) Seed round 300k$ App Analytics records all touch events of your users and shows as a heat map. App Analytics allows you to see all specific touches (first touch, second touch, etc.) as a heat map analytics

[BillCarsonFr]

AppSee

• Website: https://www.appsee.com
• Comment: Via user session recordings, touch heatmaps, and single-user journey data, mobile professionals get a complete picture of what’s going on in their app, without having to guess the “whys” behind certain KPIs. Instead of focusing on tracking everything, these tools support an actionable, lean approach to being “data-driven”.
• Category: [Analytics]
• Code signature: com.appsee
• Network signature: ?
• Maven repository: NA
• Artifact ID: ?
• Group ID: ?
• Gradle: com.appsee:appsee-android:+
• Additional links: https://www.appsee.com/docs/android/native
• Notes: Founded 2012, Israel Total Funding Amount 3M$

[BillCarsonFr]

Countly

• Website: https://count.ly/
• Comment: Countly is the best analytics platform for tracking customer journeys in web, desktop and mobile applications. We process billions of data points every day and help businesses across the globe understand their product usage and act on highly detailed data.
• Category: [Analytics]
• Code signature: ly.count.android
• Network signature: xxx.com
• Maven repository: http://dl.bintray.com/countly/maven
• Artifact ID: xxx
• Group ID: ly.count.android
• Gradle: xxx
• Additional links: https://github.com/Countly/countly-sdk-android
• Notes: Open Source. Founded 2013, London, England

[BillCarsonFr]

MixPannel

• Website: https://mixpanel.com
• Comment: We've built the only product analytics platform that lets everyone in your organization deeply understand each user journey. Get instant insights and fast iterations throughout your product development process.
• Category: [Analytics]
• Code signature: com.mixpanel
• Network signature: api\.mixpanel\.com|decide\.mixpanel\.com|switchboard\.mixpanel\.com|mixpanel\.com
• Maven repository: NA
• Artifact ID: xxx
• Group ID: xxx
• Gradle: com.mixpanel.android:mixpanel-android:5.+
• Additional links: https://mixpanel.com/help/reference/android
• Notes: Founded 2009, SF, USA. Total funding 77m$

  Our secret? Trillions of data points. To be both useful and accurate, world-class machine learning models require massive amounts of data to learn from. Luckily, Mixpanel ingests more than seven trillion data points every year. With each new piece of data, our algorithms get smarter, and you get answers faster.

Required Permissions INTERNET/ACCESS_NETWORK_STATE/BLUETOOTH

[BillCarsonFr]

Apptentive

• Website: https://www.apptentive.com/
• Comment: Build brands customers love by understanding their behavior and expectations
• Category: [Analytics, Engagment]
• Code signature: com.apptentive
• Network signature: ?
• Maven repository: ?
• Artifact ID: ?
• Group ID: ?
• Gradle: com.apptentive:apptentive-android:5.0.2
• Additional links: https://github.com/apptentive/apptentive-android
• Notes: Founded 2011, Seattle, USA. Total Funding 11.9M$

[sanpii]

Neerby

• Website: http://www.neer.by/
• Comment: Plateforme de retargeting physique
• Category: Analytics
• Code signature: ?
• Network signature: api.beaconforstore.com
• Maven repository: ?
• Artifact ID: ?
• Group ID: ?
• Gradle: ?
• Additional links: https://www.ezeeworld.com/
• Notes: Found in com.sogiphar.monpharmaciengiphar

[kaputnikGo]

Carnival

• Website: http://carnival.io/
• Comment: Carnival mobile marketing automation drives app engagement and customer conversions.
• Category: Analytics, Advertising
• Code signature: com.carnival.sdk, com.carnivalmobile
• Network signature: xxx.com
• Maven repository: xxx.com
• Artifact ID: xxx
• Group ID: xxx
• Gradle: xxx
• Additional links: https://devices.carnivalmobile.com
• Notes: FakePhoneCallActivity, "fake_call_message"

[kaputnikGo]

Taplytics

• Website: https://taplytics.com/
• Comment: Taplytics is an intelligent customer experience cloud specializing in turning first-time users into lifetime customers through magical moments
• Category: Analytics, Advertising
• Code signature: xxx
• Network signature: xxx.com
• Maven repository: xxx
• Artifact ID: xxx
• Group ID: xxx
• Gradle: https://github.com/taplytics/Taplytics-Android-SDK/raw/master/AndroidStudio/
• Additional links: https://api.taplytics.com , https://github.com/taplytics , https://js.taplytics.com/jssdk/
• Notes: Mobile, Web, TV and Over The Top devices.

[kaputnikGo]

Snowplow

• Website: https://snowplowanalytics.com/
• Comment: Cloud-native web, mobile and event analytics, running on AWS and on-premise with Kafka
• Category: Analytics, Trackers
• Code signature: com.snowplowanalytics , com.snowplowanalytics.snowplow
• Network signature: xxx.com
• Maven repository: xxx
• Artifact ID: xxx
• Group ID: xxx
• Gradle: ``
• Additional links: https://github.com/snowplow/snowplow
• Notes: Mobile, Web, Game, IoT trackers

[kaputnikGo]

Estimote

• Website: https://estimote.com/
• Comment: Estimote Proximity SDK aims to provide a simple way for apps to react to physical context by reading signals from Estimote Beacons. Estimote's invisible technology makes things happen magically in the right place and at the right time.
• Category: Beacon, Trackers, Location
• Code signature: com.estimote.
• Network signature: xxx.com
• Maven repository: xxx
• Artifact ID: xxx
• Group ID: xxx
• Gradle: com.estimote:proximity-sdk:0.3.2
• Additional links: https://github.com/Estimote/Android-Proximity-SDK
• Notes: ProximitySDK, Mobile, IoT, Wifi AP scanning, NFC

[kaputnikGo]

Adobe

• Website: https://mobilemarketing.adobe.com/
• Comment: Adobe Mobile Services brings together mobile marketing capabilities for mobile applications from across the Adobe Experience Cloud, which allows you to understand and improve user engagement with your mobile applications.
• Category: Advertising, Trackers, Beacon, Location
• Code signature: com.adobe.mobile
• Network signature: xxx.com
• Maven repository: xxx
• Artifact ID: xxx
• Group ID: xxx
• Gradle: com.adobe.mobile:adobeMobileLibrary:4.13.7
• Additional links: https://marketing.adobe.com/resources/help/en_US/mobile/ , https://marketing.adobe.com/resources/help/en_US/target/
• Notes: Native libraries are provided for iOS, Android, Windows Phone 8, Blackberry, Symbian, Unity

[kaputnikGo]

Radius Networks

• Website: https://www.radiusnetworks.com/
• Comment: Radius Networks offers a wide range of hardware, software and proximity services designed to enable hyper-proximity, micro-location engagement capabilities and analytics in today's leading mobile apps, products and technologies
• Category: Analytics, Tracking, Beacons, Location
• Code signature: com.radiusnetworks
• Network signature: proximitykit.radiusnetworks.com [edited by U+039b]
• Maven repository: xxx.com
• Artifact ID: AndroidIBeaconLibrary
• Group ID: com.radiusnetworks
• Gradle: org.altbeacon:android-beacon-library:2+
• Additional links: http://developer.radiusnetworks.com/ , http://altbeacon.github.io/android-beacon-library/
• Notes: xxx

[BillCarsonFr]

AccountKit

• Website: https://www.accountkit.com/
• Comment: Account Kit helps you quickly register for apps using just your phone number or email address-no password needed. It's reliable, easy to use and gives you a choice about how you sign up for apps.
• Category: [Identification?, Advertising]
• Code signature: com.facebook.accountkit
• Network signature: ??
• Maven repository: N/A
• Artifact ID: com.facebook.android:account-kit-sdk:4.+
• Group ID: ??
• Gradle: ??
• Additional links: https://www.accountkit.com/faq/
• Notes: This SDK allows FB to collect phone numbers and associate them to applications used. Best practices even recommend it to be presented as an alternative to FB login..

[jawz101]

since @Atavic referenced this from my host file repo, I don't know if the network signature are what DNS record strings are contained within an app or if its based on what domains are seen in a live test of an app. If it's based on live traffic, the host file on the repo he referenced has a bunch of additional subdomains for some of these companies that might help with detections. I'd been gathering them on my phone via Adaway and NetGuard logs for a few years.

also, the domain for FB's accountkit is graph.accountkit.com I just turned on logging in NetGuard and ran a few apps I know have the library and that's the domain it connects to.

Adobe Mobile Marketing 's domain traffic goes to 2o7.net Gimbal connects to analytics-server.gimbal.com, api.gimbal.com Tapylitics: api.taplytics.com, ping.taplytics.com Mixpanel has a few at mixpanel.com as well as cdn.mxpnl.com ... and so on.

I've wanted to reach out to VirusTotal to see if they could pull together some sort of collection of url's the've seen in apk files to see if I could find all of the analytic companies but I doubt they'd do that :/

[U039b]

MAdvertise

• Website: http://madvertise.com
• Comment: xxxx
• Category: Advertising
• Code signature: com.mngads.sdk|com.mngads.views|com.mngads.
• Network signature: NC
• Maven repository: NC
• Artifact ID: NC
• Group ID: NC
• Gradle: NC
• Additional links:
• Notes:

[U039b]

Retency

• Website: http://retency.com
• Comment: xxxx
• Category: Analytics
• Code signature: com.retency.sdk.android
• Network signature: NC
• Maven repository: NC
• Artifact ID: NC
• Group ID: NC
• Gradle: NC
• Additional links:
• Notes:

[U039b]

@jawz101 network signature is a regex matching domains where collected data is sent to.

[U039b]

TeleQuid

• Website: http://www.telequid.com/
• Comment: Ads synced to the TV
• Category: Advertising
• Code signature: com.telequid.
• Network signature: mars\.telequid\.com
• Maven repository: xxx.com
• Artifact ID: xxx
• Group ID: xxx
• Gradle: xxx
• Additional links: xxx xxx
• Notes:

  TAAS (Telequid Augmented Advertising Server) can be embedded in an existing app to detect images in any printed document or TV spots and display related multimedia content on mobile screen.

[U039b]

Smart Where

• Website: https://smartwhere.com/solutions/
• Comment: xxxx
• Category: [Analytics, Advertising]
• Code signature: UNKNOWN
• Network signature: xxx.com
• Maven repository: xxx.com
• Artifact ID: com.smartwhere:android-eu-sdk:16364.2
• Group ID: xxx
• Gradle: xxx
• Additional links: xxx xxx
• Notes:

  No matter what industry or market you’re in, we can help you discover the proximity technology solution that fits your needs, from marketing to logistics. Use the right combination of proximity technologies, from Beacons, Geofencing and Wi-Fi to, NFC and QR, to make your campaign succeed.

[seandiggity]

@jawz101 Not a bad idea, but not possible all the time. Sometimes we're working backwards from the SDK information we find online (from vendor/tracking company documentation or available source code).

SafeGraph/OpenLocate is a good example, where we have yet to find the SDK in apps but we know a lot about it through news stories and published source. In a case like that, we want Exodus to have the signature and be prepared to find it in submitted apps.