UNDX

A reconstructor for Dalvik Bytecode

Author

Marc Schoenefeld (marc dott schoenefeld aett gmx dott org)

Concepts

Presentation from Syscan TW

Download

Version 01

undx.jar Initial Binary Release
undx.src.zip Initial Source Release

Browse some source

APKAccess.java ClassHandler.java DalvikCodeLine.java DalvikToJVM.java InstructionCache.java

How to start

java -DASDKLoc={Location of dexdump} -jar undx.jar

What works

Reconstruction of control flow
Construction of Java classess
ODEX vtables

What sometimes fails

Type inference sometimes yields in wrong type

What is experimental

ODEX offsets

Note

For convinience undx.jar contains an embedded copy of Apache BCEL