Giter Site home page Giter Site logo

android_malware_detector's Introduction

Android Malware Detector

This is my final year thesis and the topic is using static analysis combine with machine learning techniques to detect whether or not an APK file (.i.e the android application executable) is a malware. The project's source code is written in Python for rapid development.

Table of Contents

Overview

To get into the problem, I have to follow these steps: collect data (which are APK files), extract to inspect data & get insight about them, build a classification model to make prediction about new (unseen) APK file.

Dataset

The dataset (.i.e. Training set) is divided into 2 class: benign apps & malware apps

  • The malware applications are collected by request access to VirusShare repository & by request to the author of blog page Contagio.
  • The benign applications are crawled by the self-made crawler to 2 free android applications markets:

The dataset I used to build model contains 4101 malware apps & 1276 benign apps.

Feature extraction

I have used Androguard to extract & inspect data from apk files. It is an easy tool to use, but also has a problem that it consumes much of computer's memory & take much time to extract. So I had change to use Apktool to share some work load to disk.

Classification

I used Xgboost to build model, it's a implimentation of Gradient Boosted Machine model which is recently very famous on Kaggle commpetitions. It's provide efficiently models for small laptop like mine's can process over 5000 records of raw data within just 4 - 5 minutes. I will update about some result experiences of my model on my blog.

Installation

Requirement

This project only support on Linux environment. This has some problems with file system in Windows

- Python >= 2.7
- JRE 8
- Apktool 2.2.2
- xgboost

$ cd apktool
$ export PATH=$PATH:$PWD
  • To install python package of Xgboost head to this site and follow the instructions

After install all requirements, clone this repository and run install:

$ git clone https://github.com/hunguyen1702/android_malware_detector.git

then

$ python setup.py install

or (if you want to install with pip)

$ pip install .

After that, the android-malware-detector command with available on your system, choose the --help option for usage.

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.