Native Android Vulnerability & Permission Analyzer
SecureScan is an Android security utility designed to audit installed applications for privacy risks. It provides immediate visibility into application behaviors by flagging high-risk permissions and identifying legacy applications that target outdated Android SDKs to bypass modern security protocols.
- Real-Time Audit: Scans all user-installed applications to retrieve manifest data.
- Risk Scoring Engine:
- High Risk: Identifies apps requesting sensitive permissions (Camera, Location, Microphone) combined with outdated target SDKs.
- Legacy Detection: Specifically flags apps targeting Android 9 (API 28) or lower.
- Deep-Link Mitigation: Utilizes
Settings.ACTION_APPLICATION_DETAILS_SETTINGSto provide direct access to system settings for uninstalling or force-stopping applications. - Offline Operation: Runs entirely locally with no internet permission requested.
The application is built using a native Android architecture.
- Language: Java
- Build System: Gradle
- UI: XML Layouts (Material Design)
- Core API:
PackageManager(utilizingQUERY_ALL_PACKAGESpermission)
Risk Logic: The core analysis evaluates applications based on a heuristic model:
- SDK Version Check: Checks
applicationInfo.targetSdkVersion. - Permission Analysis: Iterates through
requestedPermissionsarrays to identify dangerous permission constants.
Download the latest signed APK from the Releases Page.
Build from Source:
- Clone the repository.
- Open in Android Studio.
- Sync Gradle project.
- Run on device/emulator.
- Prashant Rao - Lead Developer
- Soham Wankhade - Frontend Engineer
This project is licensed under the MIT License.