KoodousFinder а simple tool to allows users to search for and analyze android apps for potential security threats and vulnerabilities
Account and API Key
Create a Koodous account and get your api key https://koodous.com/settings/developers
Install
$ pip install koodousfinder
Arguments
| Param | description |
|---|---|
| -h, –help | 'Show this help message and exit' |
| –package-name | "General search for APKs”` |
| –app-name | Name of the app to search for |
| –stix | Output for Structured Threat Information Expression (STIX™) format |
Examples
koodous.py –package-name “app: Brata AND package: com.brata”
koodous.py –package-name “package: com.google.android.videos AND trusted: true”
koodous.py –package-name “com.metasploit”
python3 koodous.py –app-name “WhatsApp MOD”
Modifiers for advanced search for KoodousFinder
| Attribute | Modifier | Description |
|---|---|---|
| Hash | hash: | Performs the search depending on the automatically inserted hash. The admitted hashes are sha1, sha256 and md5. |
| App name | app: | Searches for the specified app name. If it is a compound name, it can be searched enclosed in quotes, for example: app: “Whatsapp premium”. |
| Package name. | package: | Searches the package name to see if it contains the indicated string, for example: package: com.whatsapp. |
| Name of the developer or company. | developer: | Searches whether the company or developer field includes the indicated string, for example: developer: “WhatsApp Inc.”. |
| Certificate | certificate: | Searches the apps by their certificate. For example: cert: 60BBF1896747E313B240EE2A54679BB0CE4A5023 or certificate: 38A0F7D505FE18FEC64FBF343ECAAAF310DBD799. |
More information: https://docs.koodous.com/apks.html.
TODO
- Discord Integration
- Rulesets view
Development
Taskipy usage:
To run the unit tests:
task testTo run the pylint tests:
task lintTo run the isort to sort the imports:
task sortFor move Scripts click HERE
