KoodousFinder – Tool To Search And Analyze Android Apps

KoodousFinder а simple tool to allows users to search for and analyze android apps for potential security threats and vulnerabilities

Account and API Key

Create a Koodous account and get your api key https://koodous.com/settings/developers

Install

$ pip install koodousfinder

Arguments

Paramdescription
-h, –help'Show this help message and exit'
–package-name"General search for APKs”`
–app-nameName of the app to search for
–stixOutput for Structured Threat Information Expression (STIX™) format

Examples

koodous.py –package-name “app: Brata AND package: com.brata”
koodous.py –package-name “package: com.google.android.videos AND trusted: true”
koodous.py –package-name “com.metasploit”
python3 koodous.py –app-name “WhatsApp MOD”

KoodousFinder

Modifiers for advanced search for KoodousFinder

AttributeModifierDescription
Hashhash:Performs the search depending on the automatically inserted hash. The admitted hashes are sha1, sha256 and md5.
App nameapp:Searches for the specified app name. If it is a compound name, it can be searched enclosed in quotes, for example: app: “Whatsapp premium”.
Package name.package:Searches the package name to see if it contains the indicated string, for example: package: com.whatsapp.
Name of the developer or company.developer:Searches whether the company or developer field includes the indicated string, for example: developer: “WhatsApp Inc.”.
Certificatecertificate:Searches the apps by their certificate. For example: cert: 60BBF1896747E313B240EE2A54679BB0CE4A5023 or certificate: 38A0F7D505FE18FEC64FBF343ECAAAF310DBD799.

More information: https://docs.koodous.com/apks.html.

TODO

  • Discord Integration
  • Rulesets view

Development

Taskipy usage:

To run the unit tests:

task test

To run the pylint tests:

task lint

To run the isort to sort the imports:

task sort
For move Scripts click HERE 

Download KoodousFinder