Android Device D2D: Clarify how to analyze Android special file formats

aboutcode-org / scancode.io

ScanCode.io is a server to script and automate software composition analysis pipelines with ScanPipe pipelines. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase/ Google Summer of Code, nexB and others generous sponsors!

https://scancodeio.readthedocs.io

Apache License 2.0

119 stars 88 forks source link

Android Device D2D: Clarify how to analyze Android special file formats #1374

Open pombredanne opened 2 months ago

pombredanne commented 2 months ago

Android has many unique formats such as:

DEX
OAT
ART
ODEX
Other binary XML formats

We need to get a good handle on what these are and how they relate to the other formats to decide aht to do with each for the analysis. Some formats may contains the same thing but with different optimizations applied. Or in some cases we may not have multiple variants.

BANG and lief may help here for sure.

chinyeungli commented 2 months ago

DEX files contain the compiled code and resources of an Android application.
OAT files are compiled versions of DEX files optimized for the Android Runtime (ART).
ART is the runtime environment in Android that uses Ahead-of-Time compilation.
ODEX files are optimized versions of DEX files used by the Dalvik Virtual Machine to improve application startup time.

In short, I think we only need to deal with .dex files