Lazydroid is a tool written as a bash script to facilitate some aspects of an Android Security Assessment.
Features
It provides some common tasks such as:
- Set the debug flag of an application to true
- Set the backup flag of an application to true
- Re-Build the application
- Re-Sign the application
- Smart log extraction of an application
- Extract the APK of an application installed from Google Play
- Download any mobile folder (/sdcard/, application data folder, other)
- Compare two different snapshots of the same folder
- Insert Frida gadget in the APK (for example when the phone is not or cannot be rooted, and thus Frida server cannot be run)
Installation
Lazydroid requires Linux or Mac OS to run and the next tools installed:
- apktool
- jarsigner
- adb
- aapt (Android Asset Packaging Tool, part of the SDK)
- your keystore and alias
- Frida Agent (pip install frida)
Usage
To run lazydroid.sh
the steps would be the following:
1 2 3 4 5 |
$ git clone $ #configure the path to the tools (adb, jarsigner, apktool, etc and your favourite shell) $ cd lazydroid $ ./getfridalibs.sh #get the last frida libs for Android $ ./lazydroid.sh |
You can download LazyDroid here:
Or read more here.