[Soot-list] help with static analysis
Umar Farooq
ufaro001 at ucr.edu
Fri Mar 2 13:19:47 EST 2018
Hello Luis,
It seems if I am not wrong, you want to do source and sink analysis for
Android app. You can start with FlowDroid, that is data flow analysis tool
and built on top of the Soot. It is quite a flexible tool where you can
provide set of source and sinks and tool will analyze the flows for you.
Please, follow the link for details.
FlowDroid repo: https://github.com/secure-software-engineering/FlowDroid
Thanks,
Umar
On Fri, Mar 2, 2018 at 8:29 AM, De Souza Melo, Luis Henrique <
lhsm at illinois.edu> wrote:
> Hi all,
>
> I am new to soot and static analysis, so forgive me if I am asking some
> question that may have already been answered or may be obvious for some.
>
> I need a tool, or a framework, to find call stacks based on exit nodes
> (e.g., every possible call stack method that can reach
> java.net.DatagramSocket.send(DatagramPacket) call). Considering that I am
> analyzing apk files, there is a tool that does this static analysis for me,
> or at least, is it possible to do with Soot?
>
> Luis
> _______________________________________________
> Soot-list mailing list
> Soot-list at CS.McGill.CA
> https://mailman.CS.McGill.CA/mailman/listinfo/soot-list
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mailman.CS.McGill.CA/pipermail/soot-list/attachments/20180302/dca168a0/attachment.html>
More information about the Soot-list
mailing list