DroidDissector: A Static and Dynamic Analysis Tool for Android Malware Detection
Ali Muzaffar, Hani Ragab Hassen, Hind Zantout, Michael A Lones
TL;DR
DroidDissector is an integrated tool that combines static and dynamic analysis to extract comprehensive features from Android apps, aiding malware detection efforts.
Contribution
It provides a unified platform for extracting a wide range of static and dynamic features from Android applications for malware analysis.
Findings
Extracts permissions, API call graphs, and opcodes from static analysis.
Tracks system calls, network traffic, API calls, and logs during dynamic analysis.
Facilitates comprehensive Android malware feature extraction.
Abstract
DroidDissector is an extraction tool for both static and dynamic features. The aim is to provide Android malware researchers and analysts with an integrated tool that can extract all of the most widely used features in Android malware detection from one location. The static analysis module extracts features from both the manifest file and the source code of the application to obtain a broad array of features that include permissions, API call graphs and opcodes. The dynamic analysis module runs on the latest version of Android and analyses the complete behaviour of an application by tracking the system calls used, network traffic generated, API calls used and log files produced by the application.
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Code & Models
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsAdvanced Malware Detection Techniques · Digital and Cyber Forensics · Network Security and Intrusion Detection