Static analysis using QARK:

QARK (short for Quick Android Review Kit) is another interesting tool. This is a command line tool and performs static analysis of Android apps by decompiling the APK files using various tools and then analyzing the source code for specific patterns.

QARK has been developed by LinkedIn's in house security team and can be downloaded from the following link:

https://github.com/linkedin/qarkInstructions to setup QARK have been shown in Chapter 1, Setting Up the Lab. Let's see how QARK can be used to perform static analysis of Android apps.

QARK works in the following modes:

Interactive mode
Seamless mode

We can launch the QARK tool in interactive mode using the following command:

python qark.py

Running the previous command ...

Get Hacking Android now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Hacking Android by Srinivasa Rao Kotipalli, Mohammed A. Imran

Static analysis using QARK:

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly