0Pricing
Ethical Hacking Academy · Lesson

Static Analysis of APKs

Decompiling.

Static APK Analysis

Static analysis of an APK means inspecting its code and resources without running it. The goal is to recover readable source-like code from the compiled DEX.

This reveals hardcoded secrets, logic flaws, and the app's true behavior.

Decoding with apktool

apktool decodes an APK back into readable resources and smali (a human-readable form of DEX bytecode). It also decodes the binary AndroidManifest.xml.

Use it to read the manifest and to repackage modified apps.

apktool d app.apk -o app_src

All lessons in this course

  1. Android App Structure
  2. Static Analysis of APKs
  3. Dynamic Analysis with Frida
  4. Insecure Storage and Comms
← Back to Ethical Hacking Academy