Androlyzer analyzes on which confidential information your apps on your devices are accessed and informs you about potential undesired information flows.
During the installation of an app certain permissions are to be granted in order to allow operational reliability. These permissions are usually divided into functional groups and presented to the user without further details whether data access take place as it happens or not.
For example, a gaming app requests access to device state information as well as access for internet. The user may be informed, that access to the device state is required in order to pause a game during an incoming call. Internet access is required for the synchronization of the high score. Based on this example, the app could read the IMEI of the device or other specific data and transmit it to any other third parties. Among this example, there are many other ways on how personal data could be transmitted to a destination an app developer intends.
Androlyzer uncovers such undesired data flows after analyzing apps installed on your device.
★ DEVICE ANALYSIS
• Detection of malware, spyware, trojans and undesired data leaks.
• Scan your apps directly on your device or use our server to scan apps for you
• Synchronize your apps with our free data report server.
• Detect undesired data leaks due to app updates.
• See which apps are able to access your personal data.
★ DELETE UNDESIRED APPS
• Automatic uninstall proposal on detection of dangerous apps.
Androlyzer is a novel tool which allows users to gain useful insights into the internal workings of Android applications. Current security architecture of the Android OS is technically solid, but coarse-grained and nontransparent to the average user. Hence, numerous applications abuse the situation by covertly violating user's privacy and compromising device security. We approach this problem by providing static analysis of app binaries as a client as well as a web service. We maintain a large database of security and privacy related reports on Android applications, which can be accessed through a web browser. Additionally, we provide full-fledged analysis as a client app.
This app is a research prototype by Distributed Artificial Intelligence Laboratory of the Technische Universität Berlin and has been partly funded by BMBF. It will provide useful information, but it does not claim to be a complete security solution. We recommend using a traditional signature-based antivirus along Androlyzer.