Dexcalibur 0.6.2 - Linux, macOS

New feature:

• Smali execution capability (Minimalist VM) (alpha)
• Pseudocode generation (alpha) including constant propagation, removing of useless goto, and more
• Ability to create hook into the smali VM (alpha)
• Search engine requester

Fixes:

• Static analysis of smali is more accurate

Dexcalibur 0.6.1 - Linux, macOS

New feature :

• auto-save

Fix :

• minor issues

Dexcalibur v0.6 - Linux, MacOS

New features:

• Hook editor helpers: the hook editor embeds a navigation bar of hook snippets for Java and native hooks.
• Polymorphic hook: static value into hook code can filled/updater automatically with data from previous application+hook execution. Allowing to do evolutive black-list.

Fix:

• Device Manager has been partially rewritten to be more stable. Default device where hooks should be deployed can be selected.
• Save/Open feature has been patched and UI redesigned.
• "Delete hook" works again.

Changes:

• Migration to Bootstrap 4
• UI theme
• Remote errors are now partially rendered client-side
• UI is more compact, so more data can be displayed
• Navigation bar has been rewritten to offer fastest access to features/inspectors

Dexcalibur 0.5.1 - Linux, MacOS

Fix:

• SAST issue (#12)
• Undefined method

Improvement:

• console.log() are replaced by Logger.*() functions
• documentation

Dexcalibur 0.5 - Linux, MacOS

Feature :

• Add "Application Topography" inspector + UI : give a big pictures of the application by mixing manifest data with static analysis (work in progress), intent analysis, ..
• Add package patcher ( PR#5 - thanks @ubamrein )
• Add a way to switch to another project without restart Dexcalibur (partially implemented - thanks @ubamrein )
• Add android manifest parser
• Add permission analyzer

Improvements :

• Fix file path issues (PR#9 - thanks @jhscheer )
• Improve android permission list (add permission description, minimal API version, ..)
• New behavior of the static analyzer when it encounters missing references, overrided methods, and inherited methods/fields
• UI improvement of "Application Object Finder" : undefined symbols are displayed (red text), undefined method can be hooked, and some minor changes.

Dexcalibur 0.4.2 - Linux, MacOS

Feature :

• Add disassembly at runtime of files loaded dynamically via BaseDexClassLoader.
• Add frida-gadget support into the hook manager ( PR#1 - thanks ubamrein)
• Add fingerprint inspector

Improvements :

• Improve stability of the analyzer (PR#2 - thanks ubamrein)
• Improve DynamicLoader inspector and tags
• Workspace constains new folder, intercepted bytecode is saved here, Dexcalibur analyze bytecode captured previously at starting.

Dexcalibur 0.4.1 - Linux, MacOS

Fix conflicts

Dexcalibur 0.4 - Linux, MacOS

• Add Issue Inspector (built-in inspector): the aim of this inspector is to track error/exception during the runtime in order to provide to the analyst a feedback if an error occurs. Actually, only the SecurityException constructors be are hooked, but i would like it tracks the content ofadb logcat next time.
• Add UI actions related to field xref (getters / setters).
• Tags are better handled by the UI.
• Some code refactoring.
• Dockerfile has been patched

Dexcalibur 0.3 - Linux, MacOS

• Add DataClassifier inspector : classify static data when a dex is decompiled (try to detect key, hash, ascii strings, command, and so)
• Inspectors can now declare new tag categories
• Improve DynamicLoader inspector : dynamic calls are now detected and indexed
• Add the DataBlock entity representing several kind of static data.
• Finder UI is more stable and can now search DataBlock

Dexcalibur 0.2 - Linux, macOS

v0.2

Add Dockerfile and improve default configuration