SimoneAvogadro

android-reverse-engineering-skill

Security#Android#Reverse Engineering#Decompilation#API Analysis

// summary

This Claude Code skill automates the decompilation of Android APK, XAPK, JAR, and AAR files using industry-standard tools like jadx and Fernflower. It enables developers to extract HTTP APIs, Retrofit endpoints, and authentication patterns directly from compiled binaries. The tool also provides capabilities to trace complex call flows and analyze app architecture even when dealing with obfuscated code.

// technical analysis

This project provides a Claude Code skill designed to automate the reverse engineering of Android binaries, specifically targeting the extraction of HTTP APIs and network communication patterns. By integrating decompilation engines like jadx and Fernflower, it enables developers to reconstruct source-level insights from APK, XAPK, JAR, and AAR files without original source code. The architecture prioritizes a modular workflow that handles obfuscated code and complex call flows, allowing for both automated slash-command execution and granular manual script analysis.

// key highlights

Automates the decompilation of various Android package formats including APK, XAPK, JAR, and AAR files.

Extracts critical network information such as Retrofit endpoints, OkHttp calls, and hardcoded URLs to facilitate API documentation.

Traces complex call flows from high-level UI components like Activities and Fragments down to low-level HTTP requests.

Supports side-by-side comparison of different decompilation engines to improve accuracy when analyzing complex or obfuscated Java code.

Provides specialized scripts to handle obfuscated code, helping users navigate R8 and ProGuard output effectively.

Offers a flexible interface that supports both Claude Code slash commands and standalone shell scripts for versatile integration.

// use cases

Decompiling Android binaries to recover source code structure

Extracting and documenting hidden API endpoints and authentication tokens

Tracing execution flows from UI components to network requests

// getting started

To begin, ensure you have Java JDK 17+ and the required dependencies like jadx installed on your system. Install the skill into Claude Code using the marketplace command '/plugin marketplace add SimoneAvogadro/android-reverse-engineering-skill' followed by '/plugin install'. Once installed, you can trigger the analysis by running '/decompile path/to/app.apk' or by using natural language prompts within the Claude Code interface.