=====================================================
__ __ __
_ __ __ /\ \/ \ /\ \__
/\` __\ / ,.`\ \ \ < \ \ ,_\
\ \ \/ /\ __/ \ \ ^ \ \ \ \/
\ \_\ \ \____\ \ \_\ \_\ \ \ \_
\/_/ \/____/ \/_/\/_/ \ \__\
\/__/
=====================================================
If running outside of Docker (e.g locally) you will need the following installed:
- jadx (Java)
- hermes-desc (Python)
How to get rekt:
- Use the binary in the
./rekt-cli/binfolder - Download from Github releases
- Build it yourself
Rekt decompiles, analyzes and breaks application archives. A valid app archive file is needed for either of these platforms:
- iOS: iOS Package App Store (IPA,
.ipa) - Android: Android Package Kit (APK,
.apk)
Both of these archives are essentialy glorified ZIP archives that you can also unpack manually.
Pull the image and bindmount a volume scan containing your archive:
$ docker pull @thibmaek/rekt
$ docker run -it --rm -v $(pwd)/scan:/scan @thibmaek/rekt /scan/com.my_app.apkA typical run of rekt using the cli involves running:
- Decompile - Getting plain readable files
- Probe - Gathering info about the decompiled app
- Break - Finding secrets and credential files
Given an APK com.my_app.apk you'd get the results like this:
$ rekt decompile -archive=./com.my_app.apk
$ rekt probe -outputDir=./scan/com_my_app
$ rekt break -outputDir-./scan/com_my_app# Decompiling an APK
$ rekt decompile -archive=./com.my_app.apk
# Decompiling an IPA
$ rekt decompile -archive=./com.my_app.ipaOptionally provide an output directory -outputdir. Defaults to ./scan/<bundle_id>
$ rekt decompile -archive=./com.my_app.apk -outputDir=./decompiled_app$ rekt probe -inputDir=./scan/com_my_app$ rekt break -inputDir=./scan/com_my_app# Install local dependencies
$ make dependencies
# Build Docker & Go
$ make build
# Build only the docker image
$ make build_docker
# Build only the CLI
$ make build_cli- Gitlab CI support
- Github Actions support
- Azure Devops support
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent