* Updated VFS library

* zip unpack algorithm optimized to unpack files in memory structure

Author: zerjioang

core/.idea/workspace.xml

@@ -3,12 +3,9 @@
 import apkr.external.modules.helpers.log4j.Log;
 import apkr.external.modules.helpers.log4j.LoggerType;
 import droidefense.analysis.base.AbstractAndroidAnalysis;
-import droidefense.handler.*;
-import droidefense.handler.base.AbstractHandler;
-import droidefense.handler.base.DirScannerFilter;
+import droidefense.handler.FileIOHandler;
 import droidefense.sdk.helpers.DroidDefenseParams;
 import droidefense.sdk.helpers.Util;
-import droidefense.sdk.model.base.APKFile;
 import droidefense.sdk.model.base.HashedFile;
 
 import java.io.File;
@@ -22,12 +19,10 @@ public final class UnpackAnalysis extends AbstractAndroidAnalysis {
     private transient ArrayList<HashedFile> files;
 
     public UnpackAnalysis() {
-        files = new ArrayList<>();
     }
 
     @Override
     public boolean analyze() {
-        AbstractHandler handler;
         Log.write(LoggerType.TRACE, "Unpacking .apk...");
         //prepare folder
         File outputDir = FileIOHandler.getUnpackOutputFile(apkFile);
@@ -36,75 +31,16 @@ public boolean analyze() {
             Util.deleteFolder(outputDir);
         }
         //unpack file
-        switch (apkFile.getTechnique()) {
-            case APKFile.APKTOOL: {
-                //unpacks and decode on the same step
-                handler = new APKToolHandler(apkFile, outputDir);
-                handler.doTheJob();
-                Log.write(LoggerType.TRACE, "Listing unpacked files...");
-
-                //enumerate unpacked files and get information
-                boolean generateHashes = true;
-                DirScannerHandler dirHandler = new DirScannerHandler(outputDir, generateHashes, new DirScannerFilter() {
-                    @Override
-                    public boolean addFile(File f) {
-                        return true;
-                    }
-                });
-                dirHandler.doTheJob();
-                files = dirHandler.getFiles();
-                Log.write(LoggerType.TRACE, "Files found: " + files.size());
-
-                //save files count
-                currentProject.setFolderCount(dirHandler.getNfolder());
-                currentProject.setFilesCount(dirHandler.getNfiles());
-                positiveMatch = files != null && files.size() > 0;
-                //SET APP FILES & CALCULATE THEIR HASHES, FUZZING HASH, EXTENSION, SIGNATURE
-                currentProject.setAppFiles(getFiles());
-                timeStamp.stop();
-                break;
-            }
-            case APKFile.AXML: {
-                //only unpacks
-                handler = new FileUnzipHandler(apkFile, outputDir);
-                handler.doTheJob();
-                Log.write(LoggerType.TRACE, "Listing unpacked files...");
-
-                //enumerate unpacked files and getAsDotGraph information
-                boolean generateHashes = true;
-                DirScannerHandler dirHandler = new DirScannerHandler(outputDir, generateHashes, new DirScannerFilter() {
-                    @Override
-                    public boolean addFile(File f) {
-                        return true;
-                    }
-                });
-                handler.doTheJob();
-
-                //get extracted files
-                files = dirHandler.getFiles();
-                Log.write(LoggerType.TRACE, "Files found: " + files.size());
-
-                //save files count
-                currentProject.setFolderCount(dirHandler.getNfolder());
-                currentProject.setFilesCount(dirHandler.getNfiles());
-                positiveMatch = files != null && files.size() > 0;
-
-                //SET APP FILES & CALCULATE THEIR HASHES, FUZZING HASH, EXTENSION, SIGNATURE
-                currentProject.setAppFiles(getFiles());
-
-                Log.write(LoggerType.TRACE, "Decoding XML resources");
-                //decode unpacked files
-                AXMLDecoderHandler decoder = new AXMLDecoderHandler(files);
-                decoder.doTheJob();
-
-                Log.write(LoggerType.TRACE, "Generating file juiciy information...");
-                //getAsDotGraph hash, ssdeep, extension,... information
-
-                timeStamp.stop();
-                break;
-            }
+        files = apkFile.unpackWithTechnique(outputDir, currentProject);
+        if (files != null) {
+            //save files count
+            positiveMatch = files.size() > 0;
+            //SET APP FILES & CALCULATE THEIR HASHES, FUZZING HASH, EXTENSION, SIGNATURE
+            currentProject.setAppFiles(getFiles());
+            timeStamp.stop();
+            return true;
         }
-        return true;
+        return false;
     }
 
     @Override
@@ -113,8 +49,6 @@ public String getName() {
     }
 
     public ArrayList<HashedFile> getFiles() {
-        if (files == null)
-            new ArrayList<>();
         return files;
     }
 }

core/src/main/java/droidefense/analysis/UnpackAnalysis.java

@@ -3,9 +3,11 @@
 import apkr.external.modules.helpers.enums.ProcessStatus;
 import apkr.external.modules.helpers.log4j.Log;
 import apkr.external.modules.helpers.log4j.LoggerType;
+import droidefense.sdk.helpers.Util;
 import droidefense.sdk.model.base.APKFile;
 import droidefense.sdk.model.base.DroidefenseProject;
 import droidefense.sdk.model.base.ExecutionTimer;
+import droidefense.util.JsonStyle;
 
 import java.io.Serializable;
 
@@ -40,4 +42,12 @@ public void setApk(APKFile apk) {
     }
 
     protected abstract String getPluginName();
+
+    protected String getResultAsJson() {
+        return Util.toJson(this, JsonStyle.JSON_COMPRESSED);
+    }
+
+    protected String getResultAsHTML() {
+        return html;
+    }
 }

core/src/main/java/droidefense/analysis/base/PluginAnalysis.java

@@ -0,0 +1,84 @@
+package droidefense.cli;
+
+import apkr.external.modules.helpers.log4j.Log;
+import apkr.external.modules.helpers.log4j.LoggerType;
+import droidefense.handler.APKToolHandler;
+import droidefense.handler.AXMLDecoderHandler;
+import droidefense.handler.DirScannerHandler;
+import droidefense.handler.FileUnzipVFSHandler;
+import droidefense.handler.base.DirScannerFilter;
+import droidefense.sdk.model.base.APKFile;
+import droidefense.sdk.model.base.DroidefenseProject;
+import droidefense.sdk.model.base.HashedFile;
+
+import java.io.File;
+import java.util.ArrayList;
+
+/**
+ * Created by .local on 14/10/2016.
+ */
+public enum APKUnpacker {
+
+    APKTOOL_UNPACKER {
+        @Override
+        public ArrayList<HashedFile> unpackWithTechnique(DroidefenseProject currentProject, APKFile apkFile, File outputDir) {
+            //unpacks and decode on the same step
+            APKToolHandler handler = new APKToolHandler(apkFile, outputDir);
+            handler.doTheJob();
+            Log.write(LoggerType.TRACE, "Listing unpacked files...");
+
+            //enumerate unpacked files and get information
+            DirScannerHandler dirHandler = new DirScannerHandler(outputDir, GENERATE_HASHES, new DirScannerFilter() {
+                @Override
+                public boolean addFile(File f) {
+                    return true;
+                }
+            });
+            dirHandler.doTheJob();
+            ArrayList<HashedFile> files = dirHandler.getFiles();
+            Log.write(LoggerType.TRACE, "Files found: " + files.size());
+
+            //save metadata
+            currentProject.setFolderCount(dirHandler.getNfolder());
+            currentProject.setFilesCount(dirHandler.getNfiles());
+
+            return files;
+        }
+    }, ZIP_UNPACKER {
+        @Override
+        public ArrayList<HashedFile> unpackWithTechnique(DroidefenseProject currentProject, APKFile apkFile, File outputDir) {
+            //only unpacks
+            FileUnzipVFSHandler handler = new FileUnzipVFSHandler(currentProject, apkFile);
+            handler.doTheJob();
+            Log.write(LoggerType.TRACE, "Listing unpacked files...");
+
+            //TODO generate hashes of the files
+            DirScannerHandler dirHandler = new DirScannerHandler(outputDir, GENERATE_HASHES, new DirScannerFilter() {
+                @Override
+                public boolean addFile(File f) {
+                    return true;
+                }
+            });
+            handler.doTheJob();
+
+            //get extracted files
+            ArrayList<HashedFile> files = dirHandler.getFiles();
+            Log.write(LoggerType.TRACE, "Files found: " + files.size());
+
+            Log.write(LoggerType.TRACE, "Decoding XML resources");
+            //decode unpacked files
+            AXMLDecoderHandler decoder = new AXMLDecoderHandler(files);
+            decoder.doTheJob();
+
+            //save metadata
+            currentProject.setFolderCount(dirHandler.getNfolder());
+            currentProject.setFilesCount(dirHandler.getNfiles());
+
+            return files;
+        }
+    };
+
+    public static final boolean GENERATE_HASHES = true;
+
+    public abstract ArrayList<HashedFile> unpackWithTechnique(DroidefenseProject currentProject, APKFile apkFile, File outputDir);
+}

core/src/main/java/droidefense/cli/APKUnpacker.java

@@ -39,6 +39,17 @@ public DroidefenseScan(String[] args) throws InvalidScanParametersException {
             profilingAlert("activate");
         }
 
+        //get user selected unpacker. default apktool
+        String unpackerStr = settings.getUnpacker();
+        APKUnpacker unpacker = APKUnpacker.APKTOOL_UNPACKER;
+        if (unpackerStr != null) {
+            if (unpackerStr.equalsIgnoreCase("apktool")) {
+                unpacker = APKUnpacker.APKTOOL_UNPACKER;
+            } else if (unpackerStr.equalsIgnoreCase("zip")) {
+                unpacker = APKUnpacker.ZIP_UNPACKER;
+            }
+        }
+
         if (settings.getVersion()) {
             System.out.println("Current version of droidefense: " + InternalConstant.ENGINE_VERSION);
             System.out.println("Check out on Github: https://github.com/droidefense");
@@ -47,7 +58,7 @@ public DroidefenseScan(String[] args) throws InvalidScanParametersException {
             //security check
             File file = settings.getInput();
             if (file != null) {
-                initScan(file);
+                initScan(file, unpacker);
                 //profiler wait time | stop
                 if (settings.profilingEnabled()) {
                     profilingAlert("deactivate");
@@ -78,15 +89,15 @@ public void stop() {
         Log.write(LoggerType.TRACE, "Droidefense scan finished");
     }
 
-    private void initScan(File file) {
+    private void initScan(File file, APKUnpacker unpacker) {
         //execute only once
         try {
             loadVariables();
             //read dex file from foldex x file y
             APKFile apk;
 
             Log.write(LoggerType.TRACE, "Reading .apk from local file");
-            apk = new APKFile(file, APKFile.APKTOOL);
+            apk = new APKFile(file, unpacker);
 
             Log.write(LoggerType.TRACE, "Building project");
             project = new DroidefenseProject(apk);
@@ -100,6 +111,7 @@ private void initScan(File file) {
 
             //Start analysis
             project.analyze(analyzer);
+
             //stop scan
             this.stop();
         } catch (ConfigFileNotFoundException e) {

core/src/main/java/droidefense/cli/DroidefenseScan.java

@@ -28,6 +28,9 @@ public class DroidefenseSettings {
     @Parameter(names = {"-p", "--profiling"}, description = "Enable JVM profiling")
     private boolean profiling;
 
+    @Parameter(names = {"-u", "--unpack"}, description = "Select unpacker: ZIP, APKTOOL")
+    private String unpacker;
+
     public DroidefenseSettings(String[] args) {
         cmm = new JCommander(this);
         if (args != null && args.length > 0) {
@@ -62,4 +65,12 @@ public boolean hasFile() {
     public boolean profilingEnabled() {
         return profiling;
     }
+
+    public String getUnpacker() {
+        return unpacker;
+    }
+
+    public void setUnpacker(String unpacker) {
+        this.unpacker = unpacker;
+    }
 }

core/src/main/java/droidefense/cli/DroidefenseSettings.java

@@ -28,6 +28,7 @@ public DirScannerHandler(File outputDir, boolean generateInformation, DirScanner
         this.outputDir = outputDir;
         this.generateInformation = generateInformation;
         this.filter = filter;
+        files = new ArrayList<>();
     }
 
     @Override
@@ -37,8 +38,6 @@ public boolean doTheJob() {
     }
 
     private ArrayList<HashedFile> enumFiles() {
-        files = new ArrayList<>();
-
         //walk file tree
         final Path sourceDir = Paths.get(outputDir.getAbsolutePath());
         try {