DeGuard

DeGuard (http://www.apk-deguard.com) is a novel system for statistical deobfuscation of Android APKs, developed at the Software Reliability Lab, ETH Zurich, the same group which developed the widely used JSNice system. Similarly to JSNice, DeGuard is based on powerful probabilistic graphical models learned from thousands of open source programs. Using these models, DeGuard recovers important information in Android APKs, including method and class names as well as third-party libraries. DeGuard can reveal string decoders and classes that handle sensitive data in Android malware.

What is the Technology Behind DeGuard?

DeGuard is developed as part of the Machine Learning for Programming project at ETH Zurich. In particular, DeGuard is built on top of the open source Nice2Predict framework. A paper describing how DeGuard works is available here: DeGuard CCS'16 paper. For more information on this general direction, including invited and keynote talks, tutorials, and papers, see here.

Contact Us

If you are interested in using DeGuard with larger APK files or have other suggestions, please contact: Martin Vechev

People behind DeGuard

Benjamin Bichsel

More info

Petar Tsankov

More info

Dr. Veselin Raychev

More info

Prof. Dr. Martin Vechev

More info

Disclaimer

This service by ETH Zurich, Department of Computer Science, Software Reliability Lab, is free of charge. We accept only legal pieces of code. All entries are logged for research and improvement of service. ETH Zurich does not warrant any rights or service levels, nor does it acquire any rights on the code entered. Swiss law is applicable. The place of jurisdiction is Zurich, Switzerland. By sending code to this site, you warrant that all your entries are in your sole responsibility and you do not infringe any laws or third-party rights like copyrights and the like. ETH Zurich and its employees shall not be liable for any entries and for any damages resulting thereof. You agree to indemnify, defend and hold them harmless from any legal or financial demands or arising out of the breach of these terms of use, especially from third-party claims regarding infringement of copyrights and the like.