Lib.rs

命令行工具
#adb #scan #apps #usb #phone #debugging #suspicious

bin+lib spytrap-adb

使用adb和USB调试功能测试手机是否安装了跟踪软件,扫描可疑应用和配置

作者:kpcyrd

3个不稳定版本

0.3.2 2024年7月18日
0.3.1 2024年6月11日
0.2.0 2023年7月27日

#904命令行工具

Download history 103/week @ 2024-06-10 120/week @ 2024-07-15 4/week @ 2024-07-22 23/week @ 2024-07-29

每月147次下载

GPL-3.0-or-later

180KB
3K SLoC

spytrap-adb

使用adb和USB调试功能测试手机是否安装了跟踪软件,扫描可疑应用和配置。

基于stalkerware-indicators数据,由Echap提供。

用法

当不带参数运行命令时,会有交互式用户界面

./spytrap-adb

在手机上启用USB调试,并通过USB将其连接到计算机。

您还可以直接调用一些命令进行非交互式使用

# list available devices
./spytrap-adb list
# download indicators of compromise from https://github.com/AssoEchap/stalkerware-indicators
./spytrap-adb download-ioc
# scan the first connected device
./spytrap-adb scan

从源码构建

# install rustup
curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh
# clone the repository
git clone https://github.com/spytrap-org/spytrap-adb
# enter the directory
cd spytrap-adb/
# compile the project
cargo build --release --locked
# this is the release binary
./target/release/spytrap-adb

示例输出

% target/release/spytrap-adb scan
[2021-12-19T21:26:41Z INFO  spytrap_adb] Loaded 130 rules from "/home/user/.local/share/spytrap-adb/ioc.yaml"
[2021-12-19T21:26:41Z INFO  spytrap_adb] Device is not rooted
[2021-12-19T21:26:41Z INFO  spytrap_adb] Fetching remote clock
[2021-12-19T21:26:41Z INFO  spytrap_adb] Local time is 2021-12-19 21:26:41.847457823 UTC, remote time is 2021-12-19 21:26:42.318497288 UTC, drift=PT0.471039465S
[2021-12-19T21:26:41Z INFO  spytrap_adb] Comparing list of installed apps with known stalkerware ids
[2021-12-19T21:26:41Z INFO  spytrap_adb] Scanning installed apps (0/192)
[2021-12-19T21:26:41Z WARN  spytrap_adb] Suspicious Medium: Package "org.jitsi.meet" was manually installed
[2021-12-19T21:26:42Z WARN  spytrap_adb] Suspicious Medium: Package "com.android.gpstest.osmdroid" was manually installed
[2021-12-19T21:26:46Z WARN  spytrap_adb] Suspicious Medium: Package "org.fdroid.fdroid" was manually installed
[2021-12-19T21:26:46Z INFO  spytrap_adb] Scanning installed apps (100/192)
[2021-12-19T21:26:48Z WARN  spytrap_adb] Suspicious Medium: Package "com.wifi0" was manually installed
[2021-12-19T21:26:50Z INFO  spytrap_adb] Enumerating service list
[2021-12-19T21:26:50Z INFO  spytrap_adb] Reading accessibility settings
[2021-12-19T21:26:50Z INFO  spytrap_adb::accessibility] Reading accessibility settings
[2021-12-19T21:26:50Z WARN  spytrap_adb::accessibility] Found bound accessibility services: "Service[label=WiFi, feedbackType[FEEDBACK_SPOKEN, FEEDBACK_HAPTIC, FEEDBACK_AUDIBLE, FEEDBACK_VISUAL, FEEDBACK_GENERIC, FEEDBACK_BRAILLE], capabilities=1, eventTypes=TYPES_ALL_MASK, notificationTimeout=1000, requestA11yBtn=false]"
[2021-12-19T21:26:50Z WARN  spytrap_adb::accessibility] Found enabled accessibility services: "{com.wifi0/com.wifi0.AccessibilityReceiver4}"
[2021-12-19T21:26:50Z WARN  spytrap_adb] Suspicious High: An accessibility service is bound
[2021-12-19T21:26:50Z WARN  spytrap_adb] Suspicious High: An accessibility service is enabled: "{com.wifi0/com.wifi0.AccessibilityReceiver4}"
[2021-12-19T21:26:50Z INFO  spytrap_adb] Scan finished

常见问题解答

错误:无法列出设备:连接被拒绝(操作系统错误111)

adb服务器没有正确运行

在MacOS上安装adb

brew install android-platform-tools

在Arch Linux上安装adb

pacman -S android-tools

在Debian/Ubuntu上安装adb

apt install adb

类似的工作

许可证

GPLv3+

依赖项

~21–37MB
~647K SLoC