GDA-android-reversing-Tool

1. Fixed the bug that the right-click menu can't display the frida menu.
2. Fixed the bug that code blocks are lost during TRY-CATCH structure restoration. #154
3. Fixed the bug that API cross-reference results are incomplete.
4. Fixed the bug that the reference method could not be automatically located in the smali code.
5. Fixed the bug that clicking on the taskbar icon could not be minimized.
6. Fixed the issue that the search results of combinations with string.
7. Fixed the out-of-bounds crash when locating string search results.

1. Fix the issue of incorrect method icons in search results.
2. Fix the bug of null search result in binary search.
3. Optimize the preview of binary search results.
4. Fix the issue of incorrect position of top button.
5. Enhanced XML decoding capabilities.
6. Fix the issue of multithreading deadlock.

1. Fix the issue of condition reversal when there are more than 3 consecutive conditions.
2. Added resource search, supporting resource ID and name search.
3. Add the extraction of referenced resource information and add resource cross-reference and double-click viewing functions.
4. Fix variable name errors caused by register references.
5. Fix a bug in the array initialization decompiling code
6. Fix the bug of length calculation errors during string editing.
7. Fix the issue where method codes of the interface are not displayed. #142
8. Enhanced decoding ability of XML.
9. Added topping and restoration for the package trees.
10. Add code export function. #141
11. Improved and expanded search functionality, optimized search algorithms. #140
12. Fixed a series of crash bugs.

Bugs Fix and Optimizations:

1. Optimized the rules for automatic renaming.
2. Enhanced compatibility for irregular/adversarial DEX files.
3. Optimized code exporting, fixed multithreading deadlock issue, greatly improving code export speed #136
4. Fix the bug of logical errors caused by the loop header
5. Optimize the taint propagation engine, further improving the analysis speed.
6. Fix the bug of losing focus for selecting all in the search and the limitation of search length #137
7. Optimize invalid jump labels.
8. Fix the bug of losing some code blocks.
9. Fix the issue of inability to operate strings in smali code.
10. Enhanced decompression library to bypass anti-decompression tech.

Updates:

1. Implement a lightweight smali compiler to edit and patch instructions by inputting smali code.
2. Add an automatic code prompt function for SMALI code editing.
3. Automatically write the DEX file back to APK.
4. Implement automatic signature and installation of APK files.
5. Add smali code rollback function (CTR+Z).
6. Add junk instruction removal function, providing NOP direct filling and NOP folding function.
7. Implement junk instruction removal through broad-spectrum matching rules.

1. Fix the issue of no parameters when decompiling inline calls and quick-virtual-table calls.
2. Fixed a serious bug of missing string-append operations in the code caused by the optimization in 4.05.

1. Add a function for simulator auto connection.
2. Opens the device memory searching for publics in device dumper .
3. Opens the device memory sensitivity information detection and retrieval function in device dumper .
4. Optimizes dex checker's inspection strategy #126 .
5. Fixed a bug of code wrap .
6. Fixed a crash bug caused by vtable direct access to field #124 .
7. Fixed a bug that could not be located to a specific method.
8. Fixed a bug of renaming errors due to code type identification issues #123 .
9. Fixed missing conditional expression parentheses.
10. Improved the vulnerability scanning engine, improved checking speed and efficiency, and fixed multiple bugs.
11. Adds extraction of the provider for the androidmanifest.xml.
12. Fixed the inoperable bug for the key label xxxx@xxxx.
13. Fixed parenthesis issues in conditional expressions.
14. Fix windows freezen bugs during loading.
15. Fixed an error overwriting issue with field renaming #130
16. Add a function of selecting (ctrl+all) and copying (ctrl+c) all the searching results #125
17. Enhanced built-in dx tools for the jar files and improved compatibility for converting to dex.
18. Added jumps to package, class, and method by strings in the Jump Window, not only by offsets .
19. Fixed an bug that local variables could not be renamed.
20. Added supportion of folder that including mutiple dexs that are not related to names.

Add the new vul rules:
1、Android hidden ui（cwe-919）.
2、SQL Injection（SQLite）.
3、Android soot detection.
4、Android screenshot.
5、Deserialization of untrusted data.
6、Arbitrary code execution.
7、Access to arbitrary components via WebView.
8、Creating insecure intents.
9、Starting insecure intents.

1. Optimize the taint propagation analysis engine, the analysis speed has been improved, and the stuck problem has been fixed.
2. Fix the error that privacy-leaking cannot be output on the tree.
3. Fixed the problem that could not display the colorful header.
4. Fixed the jamming problem caused by the introduction of new features in version 4.03.
5. Updated vulnerability scanning rules.
6. Improve the toolbar and menu bar icons, and adjust the display of analysis results.
7. Fix the problem caused by the invalid '-- no-pause' parameter in the higher version of Frida. #110
8. Fix the de-obfuscation bug. #117
9. Add the attach by pid to the Frida hook. #116
10. Improve the dex checker. #114 #115

1. Improve the cross-reference of classes (all initialized places for a class are used as reference points)
2. Change optimizer mode to global effective mode
3. Fixed a bug in intelligent renaming. #99
4. Fixed a lot of bugs in expression output. #103
5. Fix a bug of inconsistency caused by variable symbol interruption. #103
6. Fix the problem that cannot be 'stat' in process of the dumping device data. #108
7. Updated the characteristics of malicious behavior.
8. Double-click access feature of parameters is added in the method declaration.
9. Add the new display modes for nondecodable strings, including forced decoding, ASCII, and UNICODE.
10. Added the favorites function for classes and methods.
11. Fix the problem of crashing when clicking import package in a few cases #112
12. Strengthen the cross-reference algorithm and improve the cross-reference of inherited members.
13. Optimize the search algorithm of the methods and fields in parent and child classes.
14. Parse annotation and static value.
15. Optimize the smali code and code-related operations.

1. the translation function for strings is added to multi-threaded mode to avoid jamming.
2. fix the bug of renaming null variables.
3. fix the problem that the non-standard APK cannot be processed.
4. add support for x86 and x86_ 64 device dump support (for the simulator).
5. add support for multi-device connection.
6. the Multi-DEX initialization strategy is further optimized to improve the analysis speed.
7. when renaming synchronized and cross-referencing for the inherited members.
8. add the memory function of access history.
9. optimize structural analysis of nontrivial graphs (for subgraphs in n-way and rings).
10. added classes access records.
11. the optimizer mode is added(default mode). In this mode, internal classes and anonymous classes will be embedded into the external classes. (click Menu Config>Optimizer Mode to disable or enable)
12. fix a ghost bug that caused a crash.

1. Fix the bug that all nodes were deleted when searching the class tree
2. Fix the bug that inheritance methods or members cannot cross-reference #91
3. Fix the problem that the parameters/return-value are not displayed during data flow analysis #91
4. Fix the problem about the python plug-in #92
5. The constant propagation algorithm is optimized to correct the error of code output #90
6. Optimize the expression output and correct several errors of code output #90
7. The variable declaration and expression are further optimized
8. Fix some crash bugs.
9. Add translation utility for strings (with Google and Youdao).

1. Fixed the stuck bug after modifying the class name. #83
2. New real-time memory function for code modification such as renaming and comment.
3. Add a decompile project file .gpk to save the entire mid-operation (Menu File > Save GPK project).
4. The problem of topic adaptation is optimized. #84
5. Add the always show option to the search window (the window does not close after double-clicking the search results).
6. Fixed a problem where search results could not be located in the code.
7. Fixed bug about open file not found * Jar file . #81
8. The search algorithm of in-page cross-reference is optimized and the Caton problem is solved.
9. The deobfuscation is optimized.
10. Fixed issues that could not be cross-referenced in some cases.
11. Fixed font problems in edit boxes and list boxes.
12. Fix problem script accessing multiple DEX. #87

1. Some optimization and bug repair of switch case structure;
2. Fix a bug with empty content when searching strings in ListCtrl ;
3. Fix the bug that cannot resolve DEX caused by version update;
4. Adjust the position of the cursor in class code;
5. The unindexed field in the deobfuscator is fixed;
6. Click to uncheck the repair permission context menu;
7. Fix the path configuration problem of the configuration dialog;
8. Added the call-graph window under the full screen;
9. Fix the problem that the resources in some situations;
10. Fixed a serious memory leak.

A lot of novel optimizations and some updates have been added, and A lot of bugs have been fixed. In particular, the loading and analysis speed has been increased 3+ times faster than the old one.

1. Double-clicking an interface method in an interface class, all implementations of the interface method will be displayed
2. The memory limit is broken through and some problems caused by it is fixed
3. Resource parsing and decompilation of resource classes are added
4. The associated function of the permission module is disabled by default and can be enabled through the menu > View > PermissionRef
5. The loading and parsing algorithms of classes, methods in the file are greatly optimized.
6. DX tool is integrated into GDA.
7. Optimizing the color configuration manager.
8. Optimizing the Deobfuscation(much faster than the old) and fixing several bugs
9. Loading analysis timeout prompt is added.
10. The conversion of 64-bit integer data among with hexadecimal, hexadecimal, octal, character is added, and fix the problem that negative numbers cannot be converted correctly.
11. The traversal algorithms of AllStrings and AppStringsare optimized to greatly improve the parsing speed.
12. Add native methods and interfaces traversal function(pro).
13. Optimize the display of callgraph of classes and methods.
14. Resource file sensitive information detection is added to SensitiveInfo(pro).
15. Optimize the search speed of string cross-reference.

1. Fix the memory call problem for Frida.
2. Fix missing parentheses in multi-conditional expressions. #60
3. Fix the problem of inconsistent variable names caused by parent and child classes in different basic blocks.
4. Add the saving of the js code for Frida when the device is not connected.
5. The control flow analysis algorithm is further optimized.
6. Implement the automatic propagation function of the overloaded method name renaming for the subclass of any class/interface. #65

Fixed syntax error when executing a method

1. Support Frida to hook and execute any method or class anywhere. Support js script custom hook and execution;
2. The call-graph is added to view the calling and called of the current method;
3. Fixed the problem of the jar and AAR stuck when decompiling large files;
4. Optimize dx.jar for GDA, and fix bugs to improve the speed of decompiling jar, class, and AAR;
5. Fixed a problem of parameter renaming;
6. Check the legitimacy of renaming;#56
7. Fix several other problems.

1. Fix inconsistent bugs in cross-reference results
2. Fix the problem that the control could not keep consistent after the size changed
3. Add some ability from the pro to the free
4. Fix the stuck bug when the device process opened
5. Fix several problems caused by the switch between merge mode and separation mode
6. Add package search function for searching window

1. Fix a runtime bug when the extracted sensitive information is empty
2. Optimize and add more malicious behavior features
3. GDA dumper is enhanced, such as adding copy function, automatic repair of DEX header, adding oat and package related(REF) filtering function.
4. Fix the problem that the dumper prompts an error after the dump memory succeeds.
5. Further optimize the data-flow algorithm in the GDA decompiler.

1. Fix the bug of double-click not to locate the field in reffield-searching
2. Fix the blocking problem caused by a huge array.
3. Fix the problem that some class names were not renamed into the code after deobfuscation.
4. Add restarting-memory for deobfuscate, decompiled history, try-catch, merged mode, and smart-rename.
5. Fixed the problem which could not locate the code in the search-box.
6. Optimize the switch-case structured algorithm.
7. Enable the stretching function for several windows.
8. Constant decompiling generation optimization
9. Fixed the bug of null parameter due to the limitation of the number of method parameters. #47
10. UI optimization

1. Optimize and improve the UI;
2. Fix several rare bugs;
3. Highlight the keyword in the (CTR + F) finder-box;
4. Repair the flicker of the menu;
5. Fixed the problem of missing decompiled code in some situations;
6. Open class code display(merged mode) in Pro to free version (right-click menu in code can cancel it);
7. Optimize the try-catch structural analysis algorithm.