View on GitHub

Jicer

Static Jimple Slicer for Android Apps

Download this project as a .zip file Download this project as a tar.gz file

Java 17 Maven 3.8.1

Jicer

Jicer is a static Jimple slicer. It is especially designed for slicing Android apps. Since it takes APK files as input and also outputs slices as APK files, it can smoothly be integrated into cooperative analyses such as CoDiDroid. The use of Jicer in a cooperative analysis is also explained and demonstrated in tutorial video #03 of the AQL-System.

Introduction Video

The video below shows how to configure and use Jicer: Video

GUI

To open the GUI simply run: java -jar Jicer-X.X.X.jar -gui

Screenshot

All launch parameters can also be configured via the GUI.

Launch Parameters

The following table shows all the available launch parameters.

Parameter Meaning
-gui If this parameter is given, the GUI will be launched. Any other parameter will be used to select the initial options in the GUI.
-mode , -m Three modes can be chosen: slice, sliceout and show. In slice-mode only the elements in the slice will be kept in the output. The opposite is the case in sliceout-mode: whatever is in the slice is removed from the output. The last mode show does not slice the output - whatever belongs to the slice is only shown in the log.
-from , -to One or two slicing criterion must be provided. refers to the forward slicing criterion, whereas refers to the backward criterion. Both must be provided in AQL format. Here is an example: -from "Statement('$r4 = virtualinvoke $r3.()')->Method('')->Class('de.foellix.aql.MainActivity')->App('...\App.apk')" (see next parameter for simpler input).
-simpleinput, -simple, -si Allows to use simple input. For example instead of a full Jimple statement (Statement('$r4 = virtualinvoke $r3.()')) only the called method name can be used: Statement('getDeviceId')
-d , -debug The output generated during the execution of this tool can be set to different levels. ```` may be set to: “error”, “warning”, “normal”, “debug”, “detailed”, “verbose” (ascending precision from left to right). Additionally it can be set to “short”, the output will then be equal to “normal” but shorter at some points. By default it is set to “normal”.
-dg, -draw, -drawGraphs Enables ADG output in form of an SVG (./data/temp/graphs/sdg_slicing.svg)
-f, -format The following four output formats can be used: apk, jimple, class, none. Class can only be used when the input is an class (e.g. App('.../A.class')).
-o , -out , -output By default the output file is created in the same directory where Jicer is run. The output file has the same name as the input file. Via this parameter a different path and filename can be specified.
-ie , -inputEdges An AQL-Answer can be given to Jicer to enhance the ADG - ```` refers to such an answer.
-ra, -run, -runnable By setting the parameter the created output contains statements required to run the app.
-s, -sign Implies the parameter above. The output app will be signed as specified in config.properties.
-i, -in, -incomplete The slice created is as small as possible. In most scenarios an incomplete slice is neither analyzable nor runnable. These slices are suited best for debugging.
-nff Forward field filtering (FFF) can be deactivated with this parameter.
-ncsr Context-sensitive refinement (CSR) can be deactivated with this parameter.
-sts Prefer local data (PLD) can be switched to strict thread-sensitivity (STS) by this parameter.
-os, -overapproximateSummaries If StubDroid cannot provide sufficient information for a method, this parameter decides what is assumed. By default it is assumed that the method does not assign anything to parameters or the method call’s base. When this parameter is given the opposite is assumed.
-k , -limit , -klimit , -k-limit Maxmimal execution steps of the reaching definition analysis. Whenever this limit is reached Jicer provides a warning (Default: 100,000).
-eol, -excludeOrdinaryLibraries The libraries configured in config.properties will be excluded (not loaded). This may affect slicing accuracy but also boosts performance.
-sol, -sliceOrdinaryLibraries Automatically deactivates -eol. Makes Jicer slice through the libraries specified in config.properties.
-ns, -nostats, -nostatistics Disables logging stats about the ADG and the slicing process.

Features

In the following we present a list of features that make Jicer support multiple slicing use-cases and different slice granularities:

Publications

Presentation

The slides and video as presented during SCAM 2021 are also available:

Artifact

The reviewed artifact is available at Zenodo: https://zenodo.org/record/5462859

Evaluation - Results

The results associated with the three experiments can be obtained here:

License

The AQL-System is licensed under the GNU General Public License v3 (see LICENSE).

Contact

Felix Pauck (FoelliX)
Paderborn University
fpauck@mail.uni-paderborn.de
http://www.FelixPauck.de

Links