Skip to content

Python tool to decompile the android apk and find secrets such as API keys, Tokens etc.

Notifications You must be signed in to change notification settings

viralvaghela/secret-finder

Repository files navigation

Secret Finder

Secret Finder is a Python tool that revolutionizes the process of identifying hard-coded API secrets, tokens, passwords, and other sensitive information within Android app files.

image

Features

  • Decompiles the APK file to extract the app's resources
  • Searches for sensitive strings in all files or specific files
  • Provides detailed information about the sensitive strings found, including the file name, line number, and the actual line of code

Installation

  1. Clone the repository:

    git clone https://github.com/viralvaghela/secret-finder.git
    
  2. Install the dependencies:

    pip install -r requirements.txt
    

Uage

  1. Run the tool:
    python secret_finder.py
    

Enter the path to the APK file when prompted.

Choose the file check option:

Basic Scan (Fast) - Checks for only important files. Advanced Scan (Slow) - Checks for all files. Wait for the tool to finish scanning the APK file.

The tool will display the sensitive strings found, including the file name, line number, and the line of code.

About

Python tool to decompile the android apk and find secrets such as API keys, Tokens etc.

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages