Androguard
Androguard Androguard is the Swiss Army knife for APK manifest dissection, parsing AndroidManifest.xml to extract permissions, activities, and services for vulnerability mapping like over-privileged intents. Script its Python modules to automate exports of component lists, flagging exported receivers or debuggable flags for static audits. Open-source and multi-tool, it's the manifest mapper for mobile pentesters uncovering hidden exposures in app configs.
Explore →MobSF
MobSF MobSF is the automated framework that scans APK manifests for risky permissions, deep links, and exported components, generating reports with severity scores for quick triage in security reviews. Load your APK via its Flask-based UI or API, drilling into intent filters for potential bypasses or data leaks. Open-source and all-in-one, it's the dashboard detective for analysts visualizing manifest threats at a glance.
Explore →QARK
QARK QARK is LinkedIn's static analyzer that probes manifests for insecure permissions and implicit intents, highlighting vectors like unauthorized SMS sends or file accesses in automated reports. Run its Python script on decompiled APKs, outputting JSON for custom integrations or HTML for visual breakdowns. Open-source and intent-focused, it's the permission patroller for reverse engineers spotting app overreach.
Explore →Drozer
Drozer Drozer is the dynamic manifest explorer that queries running apps for exported components and permissions via ADB, simulating attacks like intent fuzzing to validate static findings. Connect to your emulator, run agent modules for component dumps, and test resolutions for real-world exposures. Open-source from F-Secure, it's the runtime reflector for pentesters bridging manifest theory to practice.
Explore →Androwarn
Androwarn Androwarn is the permission-centric analyzer that cross-references manifest entries with risky API calls, flagging cryptography weaknesses or network sinks tied to broad permissions. Process APKs via its Python CLI for categorized warnings, exporting to XML for further scripting. Open-source from maaaaz, it's the risk ranker for mobile security pros correlating manifest grants to code behaviors.
Explore →APKLeaks
APKLeaks APKLeaks is the manifest miner that scans for hardcoded secrets in permissions and URIs, extracting API keys or endpoints exposed via intent patterns for leak detection. Decompile with its Go-based tool, running regex rules on manifests for JSON outputs of findings. Open-source from dwisiswant0, it's the secret sniffer for analysts hunting embedded creds in app configs.
Explore →aapt
aapt (Android Asset Packaging Tool) aapt is the official CLI dumper for manifest details, extracting permissions, features, and SDK versions from APKs with options for XML prettification or binary pulls. Included in Android SDK, run it on your .apk for targeted queries like -f for full dumps. Open-source from AOSP, it's the native notary for reverse engineers validating app declarations at the source.
Explore →Manifest Explorer
Manifest Explorer Manifest Explorer is the GUI viewer for AndroidManifest.xml, parsing binary or XML formats to tree-views of components and permissions for interactive navigation and exports. Load decompiled manifests in its Java app, search intents or receivers for vuln patterns. Open-source fork from community, it's the browser for mobile RE folks leafing through app blueprints visually.
Explore →android-manifest-toolkit
android-manifest-toolkit android-manifest-toolkit is the Python lib for programmatic manifest parsing, querying activities or providers with filters for automated security audits in bulk APK scans. Integrate into scripts for permission graphs or component exports, handling AXML formats natively. Open-source from williballenthin, it's the API accessor for devs automating manifest intel gathering.
Explore →AMT (Android Manifest Toolkit)