GLOBAL FOUNDATION 1.0版本 | 静态分析 _南明离火移动安全分析平台

安全声明：本平台专为移动应用安全风险研究与合规评估设计，严禁用于任何非法用途。如有疑问或建议，欢迎加入微信群交流。

应用图标

应用评分

文件基本信息

文件名称

Global-Foundation.apk

文件大小

19.24MB

MD5

812879928de79eb804b32b14d8aaaf78

SHA1

932d5488a9e165f781a42a93a270a79cd4d356b3

SHA256

9eda104ccaea355223e045841abb1ec3fa4ac136e45d367336b072b9107d37f6

病毒检测

⚠️ 2 个厂商报毒⚠️

应用基础信息

应用名称

GLOBAL FOUNDATION

包名

com.globalfoundation.app

主活动

com.globalfoundation.app.activities.SplashActivity

目标SDK

34

最小SDK

21

版本号

1.0

子版本号

1

加固信息

未加壳

组件导出状态统计

查看 Activity 组件

查看 Service 组件

查看 Receiver 组件

查看 Provider 组件

扫描与分析选项

重新扫描管理规则动态分析

反编译与源码导出

Manifest文件查看

APK文件成为会员，解锁下载

Java源代码查看 -- 下载

文件结构与资源列表

应用签名证书信息

二进制文件已签名
v1 签名: True
v2 签名: True
v3 签名: False
v4 签名: False
主题: CN=Android Debug, O=Android, C=US
签名算法: rsassa_pkcs1v15
有效期自: 2024-05-31 20:43:01+00:00
有效期至: 2054-05-24 20:43:01+00:00
发行人: CN=Android Debug, O=Android, C=US
序列号: 0x1
哈希算法: sha256
证书MD5: c15c740fa0b2c16257ae4237cc93d641
证书SHA1: 814dd520f4341189eeb6ba88f14c8b120aa52bc4
证书SHA256: b82dfb334df1a07ce11c738fa47691fb83d55d7a4aa1ddd8f52bf69d362ac4ff
证书SHA512: 69a25886655f3171b1ad60fe08ef3bcc09be3ff3aa43caec0502a373a48ccd384252f700b7f21dea6db4f34bb55ba4ed29809b38dc5355d260b2b2db00859dcc
公钥算法: rsa
密钥长度: 2048
指纹: 64ee608612f662c15b488b71aa14d7e4e5a52fb0d01f37c23b721a8811c3ca37
找到 1 个唯一证书

权限声明与风险分级

权限名称	安全等级	权限内容	权限描述	关联代码
android.permission.INTERNET	危险	完全互联网访问	允许应用程序创建网络套接字。	显示文件 com/onesignal/core/internal/http/impl/HttpClient$makeRequestIODispatcher$job$1.java com/onesignal/core/internal/http/impl/HttpConnectionFactory.java com/onesignal/notifications/internal/display/impl/NotificationDisplayBuilder.java com/onesignal/notifications/internal/display/impl/NotificationDisplayer.java com/rajat/pdfviewer/PdfDownloader.java com/razorpay/BaseUtils.java com/razorpay/c__C_.java com/razorpay/o$_b$.java com/yalantis/ucrop/task/BitmapLoadTask.java net/nightwhistler/htmlspanner/handlers/ImageHandler.java org/htmlcleaner/HtmlCleaner.java org/htmlcleaner/Utils.java
android.permission.ACCESS_NETWORK_STATE	普通	获取网络状态	允许应用程序查看所有网络的状态。	显示文件 com/globalfoundation/app/utils/Utils.java com/onesignal/common/DeviceUtils.java com/pierfrancescosoffritti/androidyoutubeplayer/core/player/utils/NetworkObserver.java com/pierfrancescosoffritti/androidyoutubeplayer/core/player/utils/NetworkObserverKt.java com/rajat/pdfviewer/PdfViewerActivity.java com/razorpay/BaseUtils.java
android.permission.READ_PHONE_STATE	危险	读取手机状态和标识	允许应用程序访问设备的手机功能。有此权限的应用程序可确定此手机的号码和序列号，是否正在通话，以及对方的号码等。	显示文件 com/razorpay/BaseUtils.java
android.permission.READ_EXTERNAL_STORAGE	危险	读取SD卡内容	允许应用程序从SD卡读取信息。	显示文件 com/github/dhaval2404/imagepicker/util/FileUtil.java com/globalfoundation/app/utils/Utils.java com/razorpay/BaseConfig.java com/razorpay/BaseUtils.java com/yalantis/ucrop/util/FileUtils.java org/htmlcleaner/HtmlCleaner.java org/jdom/adapters/AbstractDOMAdapter.java
android.permission.WRITE_EXTERNAL_STORAGE	危险	读取/修改/删除外部存储内容	允许应用程序写入外部存储。	显示文件 com/github/dhaval2404/imagepicker/util/FileUriUtils.java com/github/dhaval2404/imagepicker/util/FileUtil.java com/github/dhaval2404/imagepicker/util/ImageUtil.java com/globalfoundation/app/utils/Utils.java com/rajat/pdfviewer/PdfDownloader.java com/rajat/pdfviewer/PdfRendererCore.java com/rajat/pdfviewer/util/FileUtils.java com/razorpay/BaseUtils.java com/razorpay/CheckoutPresenterImpl.java com/yalantis/ucrop/task/BitmapCropTask.java com/yalantis/ucrop/task/BitmapLoadTask.java com/yalantis/ucrop/util/FileUtils.java org/htmlcleaner/CommandLine.java org/htmlcleaner/HtmlCleanerForAnt.java org/htmlcleaner/Serializer.java
android.permission.ACCESS_MEDIA_LOCATION	危险	获取照片的地址信息	更换头像，聊天图片等图片的地址信息被读取。	显示文件 com/github/dhaval2404/imagepicker/util/FileUriUtils.java com/yalantis/ucrop/util/FileUtils.java
com.globalfoundation.app.permission.C2D_MESSAGE	未知	未知权限	来自 android 引用的未知权限。
android.permission.POST_NOTIFICATIONS	危险	发送通知的运行时权限	允许应用发布通知，Android 13 引入的新权限。	显示文件 com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/XiaomiHomeBadger.java com/onesignal/notifications/internal/channels/impl/NotificationChannelManager.java com/onesignal/notifications/internal/common/NotificationHelper.java
android.permission.WAKE_LOCK	危险	防止手机休眠	允许应用程序防止手机休眠，在手机屏幕关闭后后台进程仍然运行。	显示文件 com/razorpay/BaseUtils.java
com.google.android.c2dm.permission.RECEIVE	普通	接收推送通知	允许应用程序接收来自云的推送通知。
android.permission.VIBRATE	普通	控制振动器	允许应用程序控制振动器，用于消息通知振动功能。
android.permission.RECEIVE_BOOT_COMPLETED	普通	开机自启	允许应用程序在系统完成启动后即自行启动。这样会延长手机的启动时间，而且如果应用程序一直运行，会降低手机的整体速度。	显示文件 com/instacart/library/truetime/BootCompletedBroadcastReceiver.java com/onesignal/notifications/receivers/BootUpReceiver.java com/onesignal/notifications/receivers/FCMBroadcastReceiver.java com/onesignal/notifications/receivers/NotificationDismissReceiver.java com/onesignal/notifications/receivers/UpgradeReceiver.java com/pierfrancescosoffritti/androidyoutubeplayer/core/player/utils/NetworkBroadcastReceiver.java com/rajat/pdfviewer/PdfViewerActivity.java com/razorpay/CheckoutPresenterImpl.java com/razorpay/RzpTokenReceiver.java com/razorpay/SmsReceiver.java com/razorpay/b__J_.java com/razorpay/c.java com/razorpay/g__v_.java
com.sec.android.provider.badge.permission.READ	普通	在应用程序上显示通知计数	在三星手机的应用程序启动图标上显示通知计数或徽章。
com.sec.android.provider.badge.permission.WRITE	普通	在应用程序上显示通知计数	在三星手机的应用程序启动图标上显示通知计数或徽章。
com.htc.launcher.permission.READ_SETTINGS	普通	在应用程序上显示通知计数	在HTC手机的应用程序启动图标上显示通知计数或徽章。
com.htc.launcher.permission.UPDATE_SHORTCUT	普通	在应用程序上显示通知计数	在HTC手机的应用程序启动图标上显示通知计数或徽章。
com.sonyericsson.home.permission.BROADCAST_BADGE	普通	在应用程序上显示通知计数	在索尼手机的应用程序启动图标上显示通知计数或徽章。
com.sonymobile.home.permission.PROVIDER_INSERT_BADGE	普通	在应用程序上显示通知计数	在索尼手机的应用程序启动图标上显示通知计数或徽章。
com.anddoes.launcher.permission.UPDATE_COUNT	普通	在应用程序上显示通知计数	在apex的应用程序启动图标上显示通知计数或徽章。
com.majeur.launcher.permission.UPDATE_BADGE	普通	在应用程序上显示通知计数	在solid的应用程序启动图标上显示通知计数或徽章。
com.huawei.android.launcher.permission.CHANGE_BADGE	普通	在应用程序上显示通知计数	在华为手机的应用程序启动图标上显示通知计数或徽章。
com.huawei.android.launcher.permission.READ_SETTINGS	普通	在应用程序上显示通知计数	在华为手机的应用程序启动图标上显示通知计数或徽章。
com.huawei.android.launcher.permission.WRITE_SETTINGS	普通	在应用程序上显示通知计数	在华为手机的应用程序启动图标上显示通知计数或徽章。
android.permission.READ_APP_BADGE	普通	显示应用程序通知	允许应用程序显示应用程序图标徽章。
com.oppo.launcher.permission.READ_SETTINGS	普通	在应用程序上显示通知计数	在OPPO手机的应用程序启动图标上显示通知计数或徽章。
com.oppo.launcher.permission.WRITE_SETTINGS	普通	在应用程序上显示通知计数	在OPPO手机的应用程序启动图标上显示通知计数或徽章。
me.everything.badger.permission.BADGE_COUNT_READ	未知	未知权限	来自 android 引用的未知权限。
me.everything.badger.permission.BADGE_COUNT_WRITE	未知	未知权限	来自 android 引用的未知权限。
android.permission.ACCESS_COARSE_LOCATION	危险	获取粗略位置	通过WiFi或移动基站的方式获取用户错略的经纬度信息，定位精度大概误差在30~1500米。恶意程序可以用它来确定您的大概位置。	显示文件 com/razorpay/BaseUtils.java
com.google.android.providers.gsf.permission.READ_GSERVICES	未知	未知权限	来自 android 引用的未知权限。
com.google.android.gms.permission.AD_ID	普通	应用程序显示广告	此应用程序使用 Google 广告 ID，并且可能会投放广告。
android.permission.ACCESS_ADSERVICES_ATTRIBUTION	普通	允许应用程序访问广告服务归因	这使应用能够检索与广告归因相关的信息，这些信息可用于有针对性的广告目的。应用程序可以收集有关用户如何与广告互动的数据，例如点击或展示，以衡量广告活动的有效性。
android.permission.ACCESS_ADSERVICES_AD_ID	普通	允许应用访问设备的广告 ID。	此 ID 是 Google 广告服务提供的唯一、用户可重置的标识符，允许应用出于广告目的跟踪用户行为，同时维护用户隐私。
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE	普通	Google 定义的权限	由 Google 定义的自定义权限。
android.permission.FOREGROUND_SERVICE	普通	创建前台Service	Android 9.0以上允许常规应用程序使用 Service.startForeground，用于podcast播放（推送悬浮播放，锁屏播放）
com.globalfoundation.app.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION	未知	未知权限	来自 android 引用的未知权限。
android.permission.ACCESS_WIFI_STATE	普通	查看Wi-Fi状态	允许应用程序查看有关Wi-Fi状态的信息。	显示文件 com/pierfrancescosoffritti/androidyoutubeplayer/core/player/utils/NetworkObserver.java com/razorpay/BaseUtils.java

证书安全合规分析

高危

1

警告

1

信息

1

标题	严重程度	描述信息
已签名应用	信息	应用程序已使用代码签名证书进行签名
应用程序使用了调试证书进行签名	高危	应用程序使用了调试证书进行签名。生产环境的应用程序不能使用调试证书发布。

Manifest 配置安全分析

高危

2

警告

18

信息

0

屏蔽

0

序号	问题	严重程度	描述信息	操作
1	应用程序可以安装在有漏洞的已更新 Android 版本上 Android 5.0-5.0.2, [minSdk=21]	信息	该应用程序可以安装在具有多个未修复漏洞的旧版本 Android 上。这些设备不会从 Google 接收合理的安全更新。支持 Android 版本 => 10、API 29 以接收合理的安全更新。	对应用 com.globalfoundation.app 屏蔽 vulnerable_os_version 规则
2	程序可被任意调试 [android:debuggable=true]	高危	应用可调试标签被开启，这使得逆向工程师更容易将调试器挂接到应用程序上。这允许导出堆栈跟踪和访问调试助手类。	对应用 com.globalfoundation.app 屏蔽 app_is_debuggable 规则
3	应用程序数据可以被备份 [android:allowBackup=true]	警告	这个标志允许任何人通过adb备份你的应用程序数据。它允许已经启用了USB调试的用户从设备上复制应用程序数据。	对应用 com.globalfoundation.app 屏蔽 app_allowbackup 规则
4	App 链接 assetlinks.json 文件未找到 [android:name=com.globalfoundation.app.activities.SplashActivity] [android:host=https://www.gogetskill.in]	高危	App Link 资产验证 URL （https://www.gogetskill.in/.well-known/assetlinks.json）未找到或配置不正确。（状态代码：None）。应用程序链接允许用户从 Web URL/电子邮件重定向到移动应用程序。如果此文件丢失或为 App Link 主机/域配置不正确，则恶意应用程序可以劫持此类 URL。这可能会导致网络钓鱼攻击，泄露 URI 中的敏感数据，例如 PII、OAuth 令牌、魔术链接/密码重置令牌等。您必须通过托管 assetlinks.json 文件并通过 Activity intent-filter 中的 [android：autoVerify=“true”] 启用验证来验证 App Link 网域。	对应用 com.globalfoundation.app 屏蔽 activity_well_known_assetlinks 规则
5	Broadcast Receiver (com.onesignal.notifications.receivers.FCMBroadcastReceiver) 受权限保护, 但是应该检查权限的保护级别。 Permission: com.google.android.c2dm.permission.SEND [android:exported=true]	警告	发现一个 Broadcast Receiver被共享给了设备上的其他应用程序，因此让它可以被设备上的任何其他应用程序访问。它受到一个在分析的应用程序中没有定义的权限的保护。因此，应该在定义它的地方检查权限的保护级别。如果它被设置为普通或危险，一个恶意应用程序可以请求并获得这个权限，并与该组件交互。如果它被设置为签名，只有使用相同证书签名的应用程序才能获得这个权限。	对应用 com.globalfoundation.app 屏蔽 receiver_exported_protected_permission_not_defined 规则
6	Activity (com.onesignal.notifications.activities.NotificationOpenedActivityHMS) 未被保护。 [android:exported=true]	警告	发现 Activity与设备上的其他应用程序共享，因此可被设备上的任何其他应用程序访问。	对应用 com.globalfoundation.app 屏蔽 activity_explicitly_exported 规则
7	Broadcast Receiver (com.onesignal.notifications.receivers.NotificationDismissReceiver) 未被保护。 [android:exported=true]	警告	发现 Broadcast Receiver与设备上的其他应用程序共享，因此可被设备上的任何其他应用程序访问。	对应用 com.globalfoundation.app 屏蔽 receiver_explicitly_exported 规则
8	Broadcast Receiver (com.onesignal.notifications.receivers.BootUpReceiver) 未被保护。 [android:exported=true]	警告	发现 Broadcast Receiver与设备上的其他应用程序共享，因此可被设备上的任何其他应用程序访问。	对应用 com.globalfoundation.app 屏蔽 receiver_explicitly_exported 规则
9	Broadcast Receiver (com.onesignal.notifications.receivers.UpgradeReceiver) 未被保护。 [android:exported=true]	警告	发现 Broadcast Receiver与设备上的其他应用程序共享，因此可被设备上的任何其他应用程序访问。	对应用 com.globalfoundation.app 屏蔽 receiver_explicitly_exported 规则
10	Activity (com.onesignal.notifications.activities.NotificationOpenedActivity) 未被保护。 [android:exported=true]	警告	发现 Activity与设备上的其他应用程序共享，因此可被设备上的任何其他应用程序访问。	对应用 com.globalfoundation.app 屏蔽 activity_explicitly_exported 规则
11	Activity (com.onesignal.notifications.activities.NotificationOpenedActivityAndroid22AndOlder) 未被保护。 [android:exported=true]	警告	发现 Activity与设备上的其他应用程序共享，因此可被设备上的任何其他应用程序访问。	对应用 com.globalfoundation.app 屏蔽 activity_explicitly_exported 规则
12	Activity (com.google.firebase.auth.internal.GenericIdpActivity) 未被保护。 [android:exported=true]	警告	发现 Activity与设备上的其他应用程序共享，因此可被设备上的任何其他应用程序访问。	对应用 com.globalfoundation.app 屏蔽 activity_explicitly_exported 规则
13	Activity (com.google.firebase.auth.internal.RecaptchaActivity) 未被保护。 [android:exported=true]	警告	发现 Activity与设备上的其他应用程序共享，因此可被设备上的任何其他应用程序访问。	对应用 com.globalfoundation.app 屏蔽 activity_explicitly_exported 规则
14	Broadcast Receiver (com.razorpay.RzpTokenReceiver) 未被保护。 [android:exported=true]	警告	发现 Broadcast Receiver与设备上的其他应用程序共享，因此可被设备上的任何其他应用程序访问。	对应用 com.globalfoundation.app 屏蔽 receiver_explicitly_exported 规则
15	Activity (com.razorpay.CheckoutActivity) 未被保护。 [android:exported=true]	警告	发现 Activity与设备上的其他应用程序共享，因此可被设备上的任何其他应用程序访问。	对应用 com.globalfoundation.app 屏蔽 activity_explicitly_exported 规则
16	Service (com.google.android.gms.auth.api.signin.RevocationBoundService) 受权限保护, 但是应该检查权限的保护级别。 Permission: com.google.android.gms.auth.api.signin.permission.REVOCATION_NOTIFICATION [android:exported=true]	警告	发现一个 Service被共享给了设备上的其他应用程序，因此让它可以被设备上的任何其他应用程序访问。它受到一个在分析的应用程序中没有定义的权限的保护。因此，应该在定义它的地方检查权限的保护级别。如果它被设置为普通或危险，一个恶意应用程序可以请求并获得这个权限，并与该组件交互。如果它被设置为签名，只有使用相同证书签名的应用程序才能获得这个权限。	对应用 com.globalfoundation.app 屏蔽 service_exported_protected_permission_not_defined 规则
17	Broadcast Receiver (com.google.firebase.iid.FirebaseInstanceIdReceiver) 受权限保护, 但是应该检查权限的保护级别。 Permission: com.google.android.c2dm.permission.SEND [android:exported=true]	警告	发现一个 Broadcast Receiver被共享给了设备上的其他应用程序，因此让它可以被设备上的任何其他应用程序访问。它受到一个在分析的应用程序中没有定义的权限的保护。因此，应该在定义它的地方检查权限的保护级别。如果它被设置为普通或危险，一个恶意应用程序可以请求并获得这个权限，并与该组件交互。如果它被设置为签名，只有使用相同证书签名的应用程序才能获得这个权限。	对应用 com.globalfoundation.app 屏蔽 receiver_exported_protected_permission_not_defined 规则
18	Service (androidx.work.impl.background.systemjob.SystemJobService) 受权限保护, 但是应该检查权限的保护级别。 Permission: android.permission.BIND_JOB_SERVICE [android:exported=true]	警告	发现一个 Service被共享给了设备上的其他应用程序，因此让它可以被设备上的任何其他应用程序访问。它受到一个在分析的应用程序中没有定义的权限的保护。因此，应该在定义它的地方检查权限的保护级别。如果它被设置为普通或危险，一个恶意应用程序可以请求并获得这个权限，并与该组件交互。如果它被设置为签名，只有使用相同证书签名的应用程序才能获得这个权限。	对应用 com.globalfoundation.app 屏蔽 service_exported_protected_permission_not_defined 规则
19	Broadcast Receiver (androidx.work.impl.diagnostics.DiagnosticsReceiver) 受权限保护, 但是应该检查权限的保护级别。 Permission: android.permission.DUMP [android:exported=true]	警告	发现一个 Broadcast Receiver被共享给了设备上的其他应用程序，因此让它可以被设备上的任何其他应用程序访问。它受到一个在分析的应用程序中没有定义的权限的保护。因此，应该在定义它的地方检查权限的保护级别。如果它被设置为普通或危险，一个恶意应用程序可以请求并获得这个权限，并与该组件交互。如果它被设置为签名，只有使用相同证书签名的应用程序才能获得这个权限。	对应用 com.globalfoundation.app 屏蔽 receiver_exported_protected_permission_not_defined 规则
20	Broadcast Receiver (androidx.profileinstaller.ProfileInstallReceiver) 受权限保护, 但是应该检查权限的保护级别。 Permission: android.permission.DUMP [android:exported=true]	警告	发现一个 Broadcast Receiver被共享给了设备上的其他应用程序，因此让它可以被设备上的任何其他应用程序访问。它受到一个在分析的应用程序中没有定义的权限的保护。因此，应该在定义它的地方检查权限的保护级别。如果它被设置为普通或危险，一个恶意应用程序可以请求并获得这个权限，并与该组件交互。如果它被设置为签名，只有使用相同证书签名的应用程序才能获得这个权限。	对应用 com.globalfoundation.app 屏蔽 receiver_exported_protected_permission_not_defined 规则
21	高优先级的Intent (999) [android:priority]	警告	通过设置一个比另一个Intent更高的优先级，应用程序有效地覆盖了其他请求。	对应用 com.globalfoundation.app 屏蔽 high_intent_priority_found 规则

可浏览 Activity 组件分析

ACTIVITY	INTENT
com.globalfoundation.app.activities.SplashActivity	Schemes: https://, Hosts: www.gogetskill.in, Path Prefixes: /course, Path Patterns: /course,
com.google.firebase.auth.internal.GenericIdpActivity	Schemes: genericidp://, Hosts: firebase.auth, Paths: /,
com.google.firebase.auth.internal.RecaptchaActivity	Schemes: recaptcha://, Hosts: firebase.auth, Paths: /,

网络通信安全风险分析

序号	范围	严重级别	描述

API调用分析

API功能	源码文件
一般功能-> 文件操作	显示文件 carbon/CarbonResources.java carbon/beta/BottomSheetLayout.java carbon/component/AvatarTextItem.java carbon/component/AvatarTextRatingSubtextDateItem.java carbon/component/AvatarTextSubtextDateItem.java carbon/component/CheckBoxItem.java carbon/component/DefaultIconDropDownItem.java carbon/component/DividerItem.java carbon/component/HeaderItem.java carbon/component/IconDropDownItem.java carbon/component/IconDropDownRow.java carbon/component/IconEditTextItem.java carbon/component/IconPasswordItem.java carbon/component/IconSearchItem.java carbon/component/IconTextItem.java carbon/component/ImageTextSubtextDateItem.java carbon/component/ImageTextSubtextItem.java carbon/component/ItemTransformer.java carbon/component/MenuItem.java carbon/component/NavigationHeaderItem.java carbon/component/PaddingItem.java carbon/databinding/CarbonRowIcondropdownBindingImpl.java carbon/dialog/ListDialog.java carbon/dialog/MultiSelectDialog.java carbon/dialog/SingleSelectDialog.java carbon/drawable/ripple/LayerDrawable.java carbon/drawable/ripple/LollipopDrawable.java carbon/drawable/ripple/LollipopDrawablesCompat.java carbon/drawable/ripple/RippleDrawableICS.java carbon/recycler/RowArrayAdapter.java carbon/recycler/RowDescriptor.java carbon/recycler/RowListAdapter.java carbon/widget/AutoCompleteEditText.java carbon/widget/DropDown.java carbon/widget/NavigationView.java com/annimon/stream/DoubleStream.java com/annimon/stream/IntStream.java com/annimon/stream/LongStream.java com/annimon/stream/Stream.java com/annimon/stream/internal/Compose.java com/caverock/androidsvg/SVG.java com/caverock/androidsvg/SVGParser.java com/caverock/androidsvg/SimpleAssetResolver.java com/github/dhaval2404/imagepicker/ImagePicker.java com/github/dhaval2404/imagepicker/provider/BaseProvider.java com/github/dhaval2404/imagepicker/provider/CameraProvider.java com/github/dhaval2404/imagepicker/provider/CompressionProvider.java com/github/dhaval2404/imagepicker/provider/CropProvider.java com/github/dhaval2404/imagepicker/util/ExifDataCopier.java com/github/dhaval2404/imagepicker/util/FileUriUtils.java com/github/dhaval2404/imagepicker/util/FileUtil.java com/github/dhaval2404/imagepicker/util/ImageUtil.java com/github/dhaval2404/imagepicker/util/IntentUtils.java com/globalfoundation/app/App.java com/globalfoundation/app/activities/CourseDetailsActivity.java com/globalfoundation/app/activities/EditProfileActivity.java com/globalfoundation/app/activities/PlayVideoActivity.java com/globalfoundation/app/activities/QuestionsActivity.java com/globalfoundation/app/activities/TestResultsActivity.java com/globalfoundation/app/activities/TextOptionsActivity.java com/globalfoundation/app/model/AppOptionsData.java com/globalfoundation/app/model/CourseSliderModel.java com/globalfoundation/app/model/PCourseModel.java com/globalfoundation/app/model/PaidCourseData.java com/globalfoundation/app/model/PaidCoursesModel.java com/globalfoundation/app/model/TestQuestionsModel.java com/globalfoundation/app/model/YoutubeVideosModel.java com/globalfoundation/app/utils/RootChecker.java com/globalfoundation/app/utils/SharedPrefsManager.java com/globalfoundation/app/utils/Utils.java com/instacart/library/truetime/InvalidNtpServerResponseException.java com/instacart/library/truetime/SharedPreferenceCacheImpl.java com/instacart/library/truetime/SntpClient.java com/instacart/library/truetime/TrueTime.java com/onesignal/common/RootToolsInternalMethods.java com/onesignal/core/internal/database/impl/OSDatabase.java com/onesignal/core/internal/http/impl/HttpClient$makeRequestIODispatcher$job$1.java com/onesignal/core/internal/http/impl/HttpConnectionFactory.java com/onesignal/core/internal/http/impl/IHttpConnectionFactory.java com/onesignal/core/internal/http/impl/TLS12SocketFactory.java com/onesignal/core/internal/operations/listeners/ModelStoreListener.java com/onesignal/core/internal/operations/listeners/SingletonModelStoreListener.java com/onesignal/core/internal/preferences/impl/PreferencesService.java com/onesignal/debug/internal/logging/Logging.java com/onesignal/location/internal/controller/impl/GmsLocationController.java com/onesignal/location/internal/controller/impl/HmsLocationController.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/util/CloseHelper.java com/onesignal/notifications/internal/registration/impl/PushRegistratorAbstractGoogle.java com/onesignal/notifications/internal/registration/impl/PushRegistratorFCM.java com/pierfrancescosoffritti/androidyoutubeplayer/core/player/views/WebViewYouTubePlayer.java com/pierfrancescosoffritti/androidyoutubeplayer/core/player/views/WebViewYouTubePlayerKt.java com/rajat/pdfviewer/PdfDownloader$download$4.java com/rajat/pdfviewer/PdfDownloader.java com/rajat/pdfviewer/PdfRendererCore.java com/rajat/pdfviewer/PdfRendererView.java com/rajat/pdfviewer/PdfViewerActivity.java com/rajat/pdfviewer/util/FileUtils.java com/razorpay/AnalyticsUtil.java com/razorpay/BaseConfig.java com/razorpay/BaseUtils.java com/razorpay/C0050r.java com/razorpay/CacheEntry.java com/razorpay/CheckoutPresenterImpl.java com/razorpay/CheckoutUtils.java com/razorpay/PaymentData.java com/razorpay/RzpGpayUtilMerged.java com/razorpay/o$_b$.java com/razorpay/p.java com/yalantis/ucrop/task/BitmapCropTask.java com/yalantis/ucrop/task/BitmapLoadTask.java com/yalantis/ucrop/util/BitmapLoadUtils.java com/yalantis/ucrop/util/FileUtils.java com/yalantis/ucrop/util/ImageHeaderParser.java net/nightwhistler/htmlspanner/HtmlSpanner.java net/nightwhistler/htmlspanner/handlers/ImageHandler.java org/htmlcleaner/BaseToken.java org/htmlcleaner/BrowserCompactXmlSerializer.java org/htmlcleaner/CommandLine.java org/htmlcleaner/CommentNode.java org/htmlcleaner/CompactHtmlSerializer.java org/htmlcleaner/CompactXmlSerializer.java org/htmlcleaner/ConfigFileTagProvider.java org/htmlcleaner/ContentNode.java org/htmlcleaner/DoctypeToken.java org/htmlcleaner/EndTagToken.java org/htmlcleaner/HtmlCleaner.java org/htmlcleaner/HtmlCleanerForAnt.java org/htmlcleaner/HtmlSerializer.java org/htmlcleaner/HtmlTokenizer.java org/htmlcleaner/PrettyHtmlSerializer.java org/htmlcleaner/PrettyXmlSerializer.java org/htmlcleaner/Serializer.java org/htmlcleaner/SimpleHtmlSerializer.java org/htmlcleaner/SimpleXmlSerializer.java org/htmlcleaner/TagNode.java org/htmlcleaner/Utils.java org/htmlcleaner/XmlSerializer.java org/jdom/Attribute.java org/jdom/AttributeList.java org/jdom/Content.java org/jdom/ContentList.java org/jdom/Element.java org/jdom/JDOMException.java org/jdom/Parent.java org/jdom/adapters/AbstractDOMAdapter.java org/jdom/adapters/CrimsonDOMAdapter.java org/jdom/adapters/DOMAdapter.java org/jdom/adapters/JAXPDOMAdapter.java org/jdom/adapters/OracleV1DOMAdapter.java org/jdom/adapters/OracleV2DOMAdapter.java org/jdom/adapters/XML4JDOMAdapter.java org/jdom/adapters/XercesDOMAdapter.java org/jdom/filter/ElementFilter.java org/jdom/filter/Filter.java org/jdom/input/SAXBuilder.java org/jdom/output/SAXOutputter.java org/jdom/output/XMLOutputter.java org/jdom/transform/JDOMSource.java org/jdom/transform/XSLTransformer.java org/jdom/xpath/XPath.java
调用java反射机制	显示文件 carbon/CarbonResources.java carbon/animation/AnimatedColorStateList.java carbon/beta/MarshmallowEditText.java carbon/component/ComponentView.java carbon/drawable/ripple/DrawableReflectiveUtils.java carbon/drawable/ripple/LollipopDrawablesCompat.java carbon/drawable/ripple/RippleDrawableLollipop.java carbon/drawable/ripple/TypedArrayCompat.java carbon/widget/EditText.java carbon/widget/TextView.java com/onesignal/common/modeling/Model.java com/onesignal/core/activities/PermissionsActivity.java com/onesignal/core/internal/device/impl/DeviceService.java com/onesignal/core/internal/purchases/impl/TrackAmazonPurchase.java com/onesignal/core/internal/purchases/impl/TrackGooglePurchase.java com/onesignal/internal/OneSignalImp.java com/onesignal/notifications/internal/analytics/impl/FirebaseAnalyticsTracker.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/ShortcutBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/XiaomiHomeBadger.java com/onesignal/notifications/internal/display/impl/NotificationDisplayBuilder.java com/onesignal/notifications/internal/display/impl/NotificationDisplayer.java com/onesignal/notifications/internal/lifecycle/impl/NotificationLifecycleService.java com/onesignal/notifications/internal/registration/impl/PushRegistratorFCM$getTokenWithClassFirebaseInstanceId$2$exception$1.java com/onesignal/notifications/internal/registration/impl/PushRegistratorFCM$getTokenWithClassFirebaseInstanceId$2.java com/onesignal/notifications/receivers/ADMMessageReceiver.java com/razorpay/BaseUtils.java com/razorpay/Checkout.java com/razorpay/OpinionatedSoln.java com/razorpay/PluginOtpElfCheckoutPresenterImpl.java com/smarteist/autoimageslider/SliderPager.java org/jdom/JDOMException.java org/jdom/adapters/AbstractDOMAdapter.java org/jdom/adapters/CrimsonDOMAdapter.java org/jdom/adapters/JAXPDOMAdapter.java org/jdom/adapters/OracleV1DOMAdapter.java org/jdom/adapters/OracleV2DOMAdapter.java org/jdom/adapters/XML4JDOMAdapter.java org/jdom/adapters/XercesDOMAdapter.java org/jdom/input/SAXBuilder.java org/jdom/output/DOMOutputter.java org/jdom/output/Format.java org/jdom/output/SAXOutputter.java org/jdom/xpath/XPath.java
JavaScript 接口方法	显示文件 com/onesignal/inAppMessages/internal/display/impl/WebViewManager.java com/pierfrancescosoffritti/androidyoutubeplayer/core/player/YouTubePlayerBridge.java com/razorpay/B$$W$.java com/razorpay/C0050r.java com/razorpay/CheckoutBridge.java com/razorpay/PluginCheckoutBridge.java com/razorpay/RzpAssist.java
一般功能-> 获取系统服务(getSystemService)	显示文件 carbon/CarbonContextThemeWrapper.java carbon/CarbonContextWrapper.java carbon/internal/DebugOverlay.java carbon/internal/SeekBarPopup.java carbon/widget/FloatingActionMenu.java com/globalfoundation/app/utils/Utils.java com/onesignal/common/DeviceUtils.java com/onesignal/core/internal/background/impl/BackgroundManager.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/XiaomiHomeBadger.java com/onesignal/notifications/internal/common/NotificationHelper.java com/pierfrancescosoffritti/androidyoutubeplayer/core/customui/menu/defaultMenu/DefaultYouTubePlayerMenu.java com/pierfrancescosoffritti/androidyoutubeplayer/core/player/utils/NetworkObserver.java com/pierfrancescosoffritti/androidyoutubeplayer/core/player/utils/NetworkObserverKt.java com/rajat/pdfviewer/PdfViewerActivity.java com/razorpay/BaseUtils.java com/razorpay/F_$o_.java com/razorpay/RzpAssist.java com/razorpay/i.java com/yalantis/ucrop/util/BitmapLoadUtils.java
一般功能-> 获取活动网路信息	显示文件 com/globalfoundation/app/utils/Utils.java com/onesignal/common/DeviceUtils.java com/pierfrancescosoffritti/androidyoutubeplayer/core/player/utils/NetworkObserverKt.java com/rajat/pdfviewer/PdfViewerActivity.java
一般功能-> IPC通信	显示文件 carbon/component/DefaultIconSearchItem.java carbon/component/IconSearchItem.java carbon/component/MenuItem.java carbon/internal/Menu.java com/github/dhaval2404/imagepicker/ImagePicker.java com/github/dhaval2404/imagepicker/ImagePickerActivity.java com/github/dhaval2404/imagepicker/provider/CameraProvider.java com/github/dhaval2404/imagepicker/provider/CompressionProvider.java com/github/dhaval2404/imagepicker/provider/CropProvider.java com/github/dhaval2404/imagepicker/provider/GalleryProvider.java com/github/dhaval2404/imagepicker/util/IntentUtils.java com/globalfoundation/app/activities/CourseDetailsActivity.java com/globalfoundation/app/activities/CourseOptionsActivity.java com/globalfoundation/app/activities/EbooksActivity.java com/globalfoundation/app/activities/EditProfileActivity.java com/globalfoundation/app/activities/LiveVideosActivity.java com/globalfoundation/app/activities/LoginActivity$loginUser$1.java com/globalfoundation/app/activities/LoginActivity.java com/globalfoundation/app/activities/MainActivity.java com/globalfoundation/app/activities/MockTestActivity.java com/globalfoundation/app/activities/MockTestCategoryActivity.java com/globalfoundation/app/activities/MyOrdersActivity.java com/globalfoundation/app/activities/NotificationsActivity.java com/globalfoundation/app/activities/OtpVerificationActivity$loginUser$1.java com/globalfoundation/app/activities/OtpVerificationActivity$signUpNewUser$1.java com/globalfoundation/app/activities/OtpVerificationActivity.java com/globalfoundation/app/activities/PaymentActivity.java com/globalfoundation/app/activities/PdfNotesActivity.java com/globalfoundation/app/activities/PhonePeWVActivity.java com/globalfoundation/app/activities/PlayVideoActivity.java com/globalfoundation/app/activities/QuestionsActivity.java com/globalfoundation/app/activities/RecordedVideosActivity.java com/globalfoundation/app/activities/ReferActivity.java com/globalfoundation/app/activities/SignUpActivity.java com/globalfoundation/app/activities/SplashActivity$getData$1.java com/globalfoundation/app/activities/SplashActivity$loginUser$1.java com/globalfoundation/app/activities/SplashActivity.java com/globalfoundation/app/activities/TestResultsActivity.java com/globalfoundation/app/activities/TextOptionsActivity.java com/globalfoundation/app/activities/VideosCategoryActivity.java com/globalfoundation/app/fragments/HomeFragment.java com/globalfoundation/app/fragments/LiveVideosFragment.java com/globalfoundation/app/fragments/MoreFragment.java com/globalfoundation/app/fragments/ProfileFragment.java com/globalfoundation/app/fragments/WebsiteFragment.java com/globalfoundation/app/utils/MyFirebaseMessagingService.java com/instacart/library/truetime/BootCompletedBroadcastReceiver.java com/onesignal/common/AndroidUtils.java com/onesignal/core/activities/PermissionsActivity.java com/onesignal/core/internal/background/impl/BackgroundManager.java com/onesignal/core/internal/database/IDatabase.java com/onesignal/core/internal/database/impl/OSDatabase.java com/onesignal/core/internal/device/impl/DeviceService.java com/onesignal/core/internal/permissions/impl/RequestPermissionService.java com/onesignal/core/internal/purchases/impl/TrackGooglePurchase.java com/onesignal/core/services/SyncService.java com/onesignal/inAppMessages/internal/common/OneSignalChromeTab.java com/onesignal/location/internal/permissions/NavigateToAndroidSettingsForLocation.java com/onesignal/notifications/activities/NotificationOpenedActivityBase$onCreate$1.java com/onesignal/notifications/activities/NotificationOpenedActivityBase$onNewIntent$1.java com/onesignal/notifications/activities/NotificationOpenedActivityBase.java com/onesignal/notifications/activities/NotificationOpenedActivityHMS$processOpen$1.java com/onesignal/notifications/activities/NotificationOpenedActivityHMS.java com/onesignal/notifications/internal/NotificationsManager.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/ShortcutBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/AdwHomeBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/ApexHomeBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/AsusHomeBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/DefaultBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/LGHomeBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/NewHtcHomeBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/OPPOHomeBader.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/SonyHomeBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/VivoHomeBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/XiaomiHomeBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/util/BroadcastHelper.java com/onesignal/notifications/internal/common/GenerateNotificationOpenIntent.java com/onesignal/notifications/internal/common/GenerateNotificationOpenIntentFromPushPayload.java com/onesignal/notifications/internal/common/NotificationFormatHelper.java com/onesignal/notifications/internal/display/INotificationDisplayBuilder.java com/onesignal/notifications/internal/display/ISummaryNotificationDisplayer.java com/onesignal/notifications/internal/display/impl/IntentGeneratorForAttachingToNotifications.java com/onesignal/notifications/internal/display/impl/NotificationDisplayBuilder.java com/onesignal/notifications/internal/display/impl/NotificationDisplayer.java com/onesignal/notifications/internal/display/impl/SummaryNotificationDisplayer$createSummaryNotification$1.java com/onesignal/notifications/internal/display/impl/SummaryNotificationDisplayer.java com/onesignal/notifications/internal/open/INotificationOpenedProcessor.java com/onesignal/notifications/internal/open/INotificationOpenedProcessorHMS.java com/onesignal/notifications/internal/open/impl/NotificationIntentExtras.java com/onesignal/notifications/internal/open/impl/NotificationOpenedProcessor$processIntent$1.java com/onesignal/notifications/internal/open/impl/NotificationOpenedProcessor$processToOpenIntent$1.java com/onesignal/notifications/internal/open/impl/NotificationOpenedProcessor.java com/onesignal/notifications/internal/open/impl/NotificationOpenedProcessorHMS.java com/onesignal/notifications/internal/permissions/impl/NavigateToAndroidSettingsForNotifications.java com/onesignal/notifications/internal/registration/impl/GooglePlayServicesUpgradePrompt.java com/onesignal/notifications/receivers/BootUpReceiver.java com/onesignal/notifications/receivers/FCMBroadcastReceiver.java com/onesignal/notifications/receivers/NotificationDismissReceiver$onReceive$1.java com/onesignal/notifications/receivers/NotificationDismissReceiver.java com/onesignal/notifications/receivers/UpgradeReceiver.java com/onesignal/notifications/services/ADMMessageHandler.java com/onesignal/notifications/services/ADMMessageHandlerJob.java com/pierfrancescosoffritti/androidyoutubeplayer/core/customui/DefaultPlayerUiController$youTubePlayerStateListener$1.java com/pierfrancescosoffritti/androidyoutubeplayer/core/player/utils/NetworkBroadcastReceiver.java com/pierfrancescosoffritti/androidyoutubeplayer/core/player/utils/NetworkObserver.java com/rajat/pdfviewer/PdfViewerActivity.java com/razorpay/AdvertisingIdUtil.java com/razorpay/B$$W$.java com/razorpay/BaseUtils.java com/razorpay/Checkout.java com/razorpay/CheckoutBridge.java com/razorpay/CheckoutInteractor.java com/razorpay/CheckoutPresenter.java com/razorpay/CheckoutPresenterImpl.java com/razorpay/G__G_.java com/razorpay/L__R$.java com/razorpay/OpinionatedSoln.java com/razorpay/PluginOtpElfCheckoutPresenterImpl.java com/razorpay/RzpGpayMerged.java com/razorpay/RzpPlugin.java com/razorpay/RzpTokenReceiver.java com/razorpay/SmsReceiver.java com/razorpay/b__J_.java com/razorpay/c.java com/razorpay/g__v_.java com/razorpay/q.java com/yalantis/ucrop/UCrop.java com/yalantis/ucrop/UCropActivity.java com/yalantis/ucrop/UCropFragment.java
组件-> 启动 Activity	显示文件 com/github/dhaval2404/imagepicker/ImagePicker.java com/github/dhaval2404/imagepicker/provider/CameraProvider.java com/github/dhaval2404/imagepicker/provider/GalleryProvider.java com/globalfoundation/app/activities/CourseDetailsActivity.java com/globalfoundation/app/activities/CourseOptionsActivity.java com/globalfoundation/app/activities/EbooksActivity.java com/globalfoundation/app/activities/LiveVideosActivity.java com/globalfoundation/app/activities/LoginActivity$loginUser$1.java com/globalfoundation/app/activities/LoginActivity.java com/globalfoundation/app/activities/MainActivity.java com/globalfoundation/app/activities/MockTestActivity.java com/globalfoundation/app/activities/MockTestCategoryActivity.java com/globalfoundation/app/activities/MyOrdersActivity.java com/globalfoundation/app/activities/NotificationsActivity.java com/globalfoundation/app/activities/OtpVerificationActivity$loginUser$1.java com/globalfoundation/app/activities/OtpVerificationActivity$signUpNewUser$1.java com/globalfoundation/app/activities/PaymentActivity.java com/globalfoundation/app/activities/PdfNotesActivity.java com/globalfoundation/app/activities/PhonePeWVActivity.java com/globalfoundation/app/activities/QuestionsActivity.java com/globalfoundation/app/activities/RecordedVideosActivity.java com/globalfoundation/app/activities/ReferActivity.java com/globalfoundation/app/activities/SignUpActivity.java com/globalfoundation/app/activities/SplashActivity$getData$1.java com/globalfoundation/app/activities/SplashActivity$loginUser$1.java com/globalfoundation/app/activities/SplashActivity.java com/globalfoundation/app/activities/SyllabusListActivity.java com/globalfoundation/app/activities/TestResultsActivity.java com/globalfoundation/app/activities/VideosCategoryActivity.java com/globalfoundation/app/fragments/HomeFragment.java com/globalfoundation/app/fragments/LiveVideosFragment.java com/globalfoundation/app/fragments/MoreFragment.java com/globalfoundation/app/fragments/ProfileFragment.java com/globalfoundation/app/fragments/WebsiteFragment.java com/onesignal/common/AndroidUtils.java com/onesignal/core/internal/permissions/impl/RequestPermissionService.java com/onesignal/inAppMessages/internal/common/OneSignalChromeTab.java com/onesignal/location/internal/permissions/NavigateToAndroidSettingsForLocation.java com/onesignal/notifications/internal/NotificationsManager.java com/onesignal/notifications/internal/permissions/impl/NavigateToAndroidSettingsForNotifications.java com/pierfrancescosoffritti/androidyoutubeplayer/core/customui/DefaultPlayerUiController$youTubePlayerStateListener$1.java com/razorpay/BaseUtils.java com/razorpay/Checkout.java com/razorpay/CheckoutPresenterImpl.java com/razorpay/OpinionatedSoln.java com/razorpay/b__J_.java com/yalantis/ucrop/UCrop.java
加密解密-> Base64 解密	显示文件 com/caverock/androidsvg/SVGAndroidRenderer.java com/globalfoundation/app/utils/Utils.java com/onesignal/notifications/internal/registration/impl/PushRegistratorFCM.java com/razorpay/BaseUtils.java com/razorpay/CheckoutPresenterImpl.java com/razorpay/CryptLib.java
网络通信-> UDP数据包	com/instacart/library/truetime/SntpClient.java
网络通信-> UDP数据报套接字	com/instacart/library/truetime/SntpClient.java
一般功能-> Android通知	显示文件 com/globalfoundation/app/utils/MyFirebaseMessagingService.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/XiaomiHomeBadger.java com/onesignal/notifications/internal/common/NotificationHelper.java com/onesignal/notifications/internal/display/impl/NotificationDisplayer.java com/onesignal/notifications/internal/display/impl/SummaryNotificationDisplayer.java
网络通信-> WebView 相关	显示文件 com/globalfoundation/app/activities/PhonePeWVActivity.java com/globalfoundation/app/fragments/WebsiteFragment.java com/onesignal/inAppMessages/internal/display/impl/WebViewManager.java com/pierfrancescosoffritti/androidyoutubeplayer/core/player/views/YouTubePlayerImpl.java com/rajat/pdfviewer/PdfRendererView.java com/razorpay/B$$W$.java com/razorpay/BaseUtils.java com/razorpay/Checkout.java com/razorpay/CheckoutActivity.java com/razorpay/CheckoutPresenterImpl.java com/razorpay/PluginOtpElfCheckoutPresenterImpl.java com/razorpay/RzpAssist.java com/razorpay/h.java com/razorpay/w_$E$.java
组件-> 发送广播	显示文件 com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/AdwHomeBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/ApexHomeBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/AsusHomeBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/DefaultBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/LGHomeBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/NewHtcHomeBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/SonyHomeBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/VivoHomeBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/XiaomiHomeBadger.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/util/BroadcastHelper.java com/onesignal/notifications/internal/open/impl/NotificationOpenedProcessor.java com/razorpay/L__R$.java com/razorpay/SmsReceiver.java
组件-> 启动 Service	com/onesignal/core/internal/purchases/impl/TrackGooglePurchase.java com/razorpay/AdvertisingIdUtil.java
网络通信-> WebView JavaScript接口	显示文件 com/globalfoundation/app/activities/PhonePeWVActivity.java com/globalfoundation/app/fragments/WebsiteFragment.java com/onesignal/inAppMessages/internal/display/impl/WebViewManager.java com/pierfrancescosoffritti/androidyoutubeplayer/core/player/views/WebViewYouTubePlayer.java com/rajat/pdfviewer/PdfRendererView.java com/razorpay/B$$W$.java com/razorpay/BaseUtils.java com/razorpay/CheckoutActivity.java com/razorpay/CheckoutPresenterImpl.java com/razorpay/RzpAssist.java
网络通信-> HTTP建立连接	com/onesignal/core/internal/http/impl/HttpClient$makeRequestIODispatcher$job$1.java com/onesignal/core/internal/http/impl/HttpConnectionFactory.java
网络通信-> HTTPS建立连接	显示文件 com/onesignal/core/internal/http/impl/HttpClient$makeRequestIODispatcher$job$1.java com/razorpay/BaseUtils.java com/razorpay/c__C_.java com/razorpay/o$_b$.java
网络通信-> SSL证书处理	com/onesignal/core/internal/http/impl/HttpClient$makeRequestIODispatcher$job$1.java com/onesignal/core/internal/http/impl/TLS12SocketFactory.java
网络通信-> WebView GET请求	显示文件 com/onesignal/inAppMessages/internal/display/impl/WebViewManager.java com/pierfrancescosoffritti/androidyoutubeplayer/core/player/views/WebViewYouTubePlayer.java com/razorpay/B$$W$.java com/razorpay/CheckoutActivity.java com/razorpay/CheckoutPresenterImpl.java
网络通信-> URLConnection	com/onesignal/core/internal/http/impl/HttpConnectionFactory.java com/rajat/pdfviewer/PdfDownloader.java org/htmlcleaner/HtmlCleaner.java
加密解密-> Crypto加解密组件	com/razorpay/CryptLib.java
加密解密-> Base64 加密	显示文件 com/globalfoundation/app/utils/Utils.java com/onesignal/inAppMessages/internal/display/impl/InAppDisplayer.java com/razorpay/AppSignatureHelper.java com/razorpay/BaseUtils.java com/razorpay/CryptLib.java
DEX-> 动态加载	com/razorpay/BaseCheckoutOtpelfActivity.java com/razorpay/PluginOtpElfCheckoutPresenterImpl.java
隐私数据-> 获取GPS位置信息	com/onesignal/location/internal/capture/impl/LocationCapturer.java com/onesignal/location/internal/controller/impl/GmsLocationController.java com/onesignal/location/internal/controller/impl/HmsLocationController.java
一般功能-> 查询数据库(短信、联系人、通话记录、浏览器历史等)	com/github/dhaval2404/imagepicker/util/FileUriUtils.java com/onesignal/notifications/internal/badges/impl/shortcutbadger/impl/SamsungHomeBadger.java
加密解密-> 信息摘要算法	com/globalfoundation/app/utils/Utils.java com/razorpay/AppSignatureHelper.java com/razorpay/BaseUtils.java
隐私数据-> 剪贴板数据读写操作	com/razorpay/RzpAssist.java
进程操作-> 获取进程pid	com/globalfoundation/app/activities/SplashActivity.java com/onesignal/common/AndroidSupportV4Compat.java
进程操作-> 杀死进程	com/globalfoundation/app/activities/SplashActivity.java org/htmlcleaner/CommandLine.java
网络通信-> TCP套接字	com/globalfoundation/app/utils/Utils.java com/onesignal/core/internal/http/impl/TLS12SocketFactory.java com/razorpay/c__C_.java
网络通信-> OkHttpClient Connection	com/yalantis/ucrop/task/BitmapLoadTask.java
一般功能-> 加载so文件	com/globalfoundation/app/utils/ApiConstants.java
隐私数据-> 获取已安装的应用程序	com/razorpay/BaseUtils.java
一般功能-> 获取WiFi相关信息	com/razorpay/BaseUtils.java
隐私数据-> 读取短信	com/razorpay/SmsReceiver.java
一般功能-> 获取网络接口信息	com/globalfoundation/app/utils/Utils.java

安全漏洞检测

高危

2

警告

7

信息

2

安全

1

屏蔽

0

序号	问题	等级	参考标准	文件位置	操作
1	应用程序记录日志信息,不得记录敏感信息	信息	CWE: CWE-532: 通过日志文件的信息暴露 OWASP MASVS: MSTG-STORAGE-3	升级会员：解锁高级权限	对应用 com.globalfoundation.app 屏蔽 android_logging 规则仅对这些文件屏蔽 android_logging 规则
2	此应用程序可能具有Root检测功能	安全	OWASP MASVS: MSTG-RESILIENCE-1	升级会员：解锁高级权限	对应用 com.globalfoundation.app 屏蔽 android_detect_root 规则仅对这些文件屏蔽 android_detect_root 规则
3	应用程序使用不安全的随机数生成器	警告	CWE: CWE-330: 使用不充分的随机数 OWASP Top 10: M5: Insufficient Cryptography OWASP MASVS: MSTG-CRYPTO-6	升级会员：解锁高级权限	对应用 com.globalfoundation.app 屏蔽 android_insecure_random 规则仅对这些文件屏蔽 android_insecure_random 规则
4	文件可能包含硬编码的敏感信息，如用户名、密码、密钥等	警告	CWE: CWE-312: 明文存储敏感信息 OWASP Top 10: M9: Reverse Engineering OWASP MASVS: MSTG-STORAGE-14	升级会员：解锁高级权限	对应用 com.globalfoundation.app 屏蔽 android_hardcoded 规则仅对这些文件屏蔽 android_hardcoded 规则
5	应用程序使用SQLite数据库并执行原始SQL查询。原始SQL查询中不受信任的用户输入可能会导致SQL注入。敏感信息也应加密并写入数据库	警告	CWE: CWE-89: SQL命令中使用的特殊元素转义处理不恰当（'SQL 注入'） OWASP Top 10: M7: Client Code Quality	升级会员：解锁高级权限	对应用 com.globalfoundation.app 屏蔽 android_sql_raw_query 规则仅对这些文件屏蔽 android_sql_raw_query 规则
6	如果一个应用程序使用WebView.loadDataWithBaseURL方法来加载一个网页到WebView，那么这个应用程序可能会遭受跨站脚本攻击	高危	CWE: CWE-79: 在Web页面生成时对输入的转义处理不恰当（'跨站脚本'） OWASP Top 10: M1: Improper Platform Usage OWASP MASVS: MSTG-PLATFORM-6	升级会员：解锁高级权限	对应用 com.globalfoundation.app 屏蔽 android_webview_xss 规则仅对这些文件屏蔽 android_webview_xss 规则
7	不安全的Web视图实现。可能存在WebView任意代码执行漏洞	警告	CWE: CWE-749: 暴露危险方法或函数 OWASP Top 10: M1: Improper Platform Usage OWASP MASVS: MSTG-PLATFORM-7	升级会员：解锁高级权限	对应用 com.globalfoundation.app 屏蔽 android_webview 规则仅对这些文件屏蔽 android_webview 规则
8	已启用远程WebView调试	高危	CWE: CWE-919: 移动应用程序中的弱点 OWASP Top 10: M1: Improper Platform Usage OWASP MASVS: MSTG-RESILIENCE-2	升级会员：解锁高级权限	对应用 com.globalfoundation.app 屏蔽 android_webview_debug 规则仅对这些文件屏蔽 android_webview_debug 规则
9	IP地址泄露	警告	CWE: CWE-200: 信息泄露 OWASP MASVS: MSTG-CODE-2	升级会员：解锁高级权限	对应用 com.globalfoundation.app 屏蔽 android_ip_disclosure 规则仅对这些文件屏蔽 android_ip_disclosure 规则
10	此应用程序将数据复制到剪贴板。敏感数据不应复制到剪贴板，因为其他应用程序可以访问它	信息	OWASP MASVS: MSTG-STORAGE-10	升级会员：解锁高级权限	对应用 com.globalfoundation.app 屏蔽 android_clipboard_copy 规则仅对这些文件屏蔽 android_clipboard_copy 规则
11	应用程序可以读取/写入外部存储器，任何应用程序都可以读取写入外部存储器的数据	警告	CWE: CWE-276: 默认权限不正确 OWASP Top 10: M2: Insecure Data Storage OWASP MASVS: MSTG-STORAGE-2	升级会员：解锁高级权限	对应用 com.globalfoundation.app 屏蔽 android_read_write_external 规则仅对这些文件屏蔽 android_read_write_external 规则
12	MD5是已知存在哈希冲突的弱哈希	警告	CWE: CWE-327: 使用已被攻破或存在风险的密码学算法 OWASP Top 10: M5: Insufficient Cryptography OWASP MASVS: MSTG-CRYPTO-4	升级会员：解锁高级权限	对应用 com.globalfoundation.app 屏蔽 android_md5 规则仅对这些文件屏蔽 android_md5 规则

Native库安全分析

No Shared Objects found.

序号	动态库	NX(堆栈禁止执行)	PIE	STACK CANARY(栈保护)	RELRO	RPATH（指定SO搜索路径）	RUNPATH（指定SO搜索路径）	FORTIFY(常用函数加强检查)	SYMBOLS STRIPPED(裁剪符号表)

文件分析

序号	问题	文件

敏感权限分析

恶意软件常用权限 5/30

android.permission.READ_PHONE_STATE
android.permission.WAKE_LOCK
android.permission.VIBRATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.ACCESS_COARSE_LOCATION

其它常用权限 9/46

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
com.google.android.c2dm.permission.RECEIVE
com.google.android.gms.permission.AD_ID
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
android.permission.FOREGROUND_SERVICE
android.permission.ACCESS_WIFI_STATE

恶意软件常用权限 是被已知恶意软件广泛滥用的权限。
其它常用权限 是已知恶意软件经常滥用的权限。

IP地理位置

恶意域名检测

域名	状态	中国境内	位置信息
approvals-api.getsimpl.com	安全	否	IP地址: 20.190.151.68 国家: 印度地区: 马哈拉施特拉邦城市: 孟买查看: Google 地图
razorpay.com	安全	否	IP地址: 143.204.165.93 国家: 美利坚合众国地区: 得克萨斯州城市: 达拉斯查看: Google 地图
netbanking.yesbank.co.in	安全	否	没有可用的地理位置信息。
www.paypal.com	安全	否	IP地址: 151.101.129.21 国家: 美利坚合众国地区: 加利福尼亚城市: 旧金山查看: Google 地图
twitter.com	安全	否	IP地址: 151.101.129.21 国家: 美利坚合众国地区: 加利福尼亚城市: 旧金山查看: Google 地图
gkscoop.com	安全	否	IP地址: 86.38.243.236 国家: 印度地区: 马哈拉施特拉邦城市: 孟买查看: Google 地图
login.yahoo.com	安全	否	IP地址: 20.190.151.68 国家: 美利坚合众国地区: 纽约城市: 纽约市查看: Google 地图
acs.icicibank.com	安全	否	没有可用的地理位置信息。
login.live.com	安全	否	IP地址: 20.190.151.68 国家: 美利坚合众国地区: 弗吉尼亚州城市: 华盛顿查看: Google 地图
www.gogetskill.in	安全	否	IP地址: 104.21.79.132 国家: 美利坚合众国地区: 加利福尼亚城市: 旧金山查看: Google 地图
api.onesignal.com	安全	否	IP地址: 104.16.160.145 国家: 美利坚合众国地区: 加利福尼亚城市: 旧金山查看: Google 地图
mvnrepository.com	安全	否	IP地址: 103.166.216.52 国家: 美利坚合众国地区: 加利福尼亚城市: 旧金山查看: Google 地图
firebase-settings.crashlytics.com	安全	是	IP地址: 180.163.150.34 国家: 中国地区: 上海城市: 上海查看: 高德地图
www.recaptcha.net	安全	是	IP地址: 180.163.150.34 国家: 中国地区: 上海城市: 上海查看: 高德地图
goo.gl	安全	否	IP地址: 142.250.68.78 国家: 美利坚合众国地区: 加利福尼亚城市: 洛杉矶查看: Google 地图
www.3dsecure.icicibank.com	安全	否	IP地址: 3.161.225.125 国家: 印度地区: 马哈拉施特拉邦城市: 孟买查看: Google 地图
cdn.razorpay.com	安全	否	IP地址: 3.161.225.125 国家: 美利坚合众国地区: 得克萨斯州城市: 达拉斯查看: Google 地图
org.jdom.transform.jdomresult	安全	否	没有可用的地理位置信息。
www.linkedin.com	安全	否	IP地址: 13.107.42.14 国家: 美利坚合众国地区: 华盛顿城市: 雷德蒙查看: Google 地图
jdom.org	安全	否	IP地址: 157.240.11.53 国家: 美利坚合众国地区: 华盛顿城市: 西雅图查看: Google 地图
lumberjack-metrics.razorpay.com	安全	否	IP地址: 3.7.214.2 国家: 印度地区: 马哈拉施特拉邦城市: 孟买查看: Google 地图
org.jdom.transform.jdomsource	安全	否	没有可用的地理位置信息。
google.com	安全	否	IP地址: 142.250.188.238 国家: 美利坚合众国地区: 加利福尼亚城市: 山景城查看: Google 地图
app-measurement.com	安全	是	IP地址: 180.163.150.33 国家: 中国地区: 上海城市: 上海查看: 高德地图
pagead2.googlesyndication.com	安全	是	IP地址: 180.163.151.38 国家: 中国地区: 上海城市: 上海查看: 高德地图
www.gstatic.cn	安全	是	IP地址: 180.163.151.162 国家: 中国地区: 上海城市: 上海查看: 高德地图
www.kotak.com	安全	否	IP地址: 104.18.17.195 国家: 美利坚合众国地区: 加利福尼亚城市: 旧金山查看: Google 地图
api.razorpay.com	安全	否	IP地址: 52.66.93.55 国家: 印度地区: 马哈拉施特拉邦城市: 孟买查看: Google 地图
www.http.httpclient	安全	否	没有可用的地理位置信息。
api.whatsapp.com	安全	否	IP地址: 157.240.11.53 国家: 美利坚合众国地区: 加利福尼亚城市: 洛杉矶查看: Google 地图

手机号提取

URL链接分析

URL信息	源码文件
www.gogetskill.in	自研引擎-M
http://org.jdom.transform.jdomsource/feature	org/jdom/transform/JDOMSource.java
http://jdom.org/jaxp/xpath/jdom	org/jdom/xpath/XPath.java
www.3dsecure.icicibank.com/acsweb/enrollweb/icicibank/server/otpserver www.3dsecure.icicibank.com/acsweb/enrollweb/icicibank/server/accesscontrolserver https://acs.icicibank.com/acspage/cap data:{method:null,bank:null,wallet:null,vpa:null,amount:0,razorpay_otp:!1}},ee=!1,ye= www.3dsecure.icicibank.com/acsweb/enrollweb/icicibank/auth/scode 127.0.0.1 https://netbanking.yesbank.co.in/netbanking/merchant www.kotak.com/.*/kseclogin	com/razorpay/OtpElfData.java
https://razorpay.com/docs/payments/payment-gateway/android-integration/standard https://mvnrepository.com/artifact/com.razorpay/checkout/ https://razorpay.com/docs/payments/payment-gateway/android-integration/standard/#list-of-razorpay-android-standard-sdk-versions-last	com/razorpay/OpinionatedSoln.java
https://drive.google.com/viewer/viewer?hl=en&embedded=true&url=	com/rajat/pdfviewer/PdfRendererView.java
http://org.jdom.transform.jdomresult/feature	org/jdom/transform/JDOMResult.java
https://api.razorpay.com/v1/payments/create/ajax	com/razorpay/RzpGpayMerged.java
http://temporary	org/jdom/adapters/AbstractDOMAdapter.java
https://api.onesignal.com/	com/onesignal/core/internal/config/ConfigModel.java
https://www.gogetskill.in/course?id=	com/globalfoundation/app/activities/CourseDetailsActivity.java
https://api.razorpay.com/v1/payments/	com/razorpay/RzpAssist.java
https://api.razorpay.com/v1/checkout/public https://api.razorpay.com	com/razorpay/Checkout.java
https://gkscoop.com/checkpayment	com/globalfoundation/app/activities/PhonePeWVActivity.java
https://api.razorpay.com/v1/payments/ https://api.razorpay.com/v1/checkout/public https://api.razorpay.com	com/razorpay/CheckoutPresenterImpl.java
https://approvals-api.getsimpl.com/my-ip	com/razorpay/c__C_.java
https://github.com/zieiony/carbon/issues	carbon/Carbon.java
www.gogetskill.in	com/globalfoundation/app/utils/Variables.java
data:{choices:e.view_rules www.3dsecure.icicibank.com/acsweb/enrollweb/icicibank/server/otpserver www.3dsecure.icicibank.com/acsweb/enrollweb/icicibank/server/accesscontrolserver https://acs.icicibank.com/acspage/cap www.3dsecure.icicibank.com/acsweb/enrollweb/icicibank/auth/scode www.kotak.com/.*/kseclogin https://api.razorpay.com/v1/checkout 127.0.0.1 data:{method:null,bank:null,wallet:null,vpa:null,amount:0,razorpay_otp:!1}},ue=!1,pe= https://cdn.razorpay.com/static/magic/ https://netbanking.yesbank.co.in/netbanking/merchant https://cdn.razorpay.com/static/otpelf/ https://api.razorpay.com	com/razorpay/BaseConfig.java
https://api.razorpay.com/v1/payments/ https://mvnrepository.com/artifact/com.razorpay/checkout/ https://api.razorpay.com	com/razorpay/BaseConstants.java
https://lumberjack-metrics.razorpay.com/v1/frontend-metrics	com/razorpay/F_$o_.java
https://lumberjack-metrics.razorpay.com/v1/frontend-metrics	com/razorpay/AnalyticsConstants.java
http://api.whatsapp.com/send?phone=	com/globalfoundation/app/fragments/MoreFragment.java
https://github.com/zieiony/carbon/issues https://razorpay.com/docs/payments/payment-gateway/android-integration/standard https://www.google.com https://firebase.google.com/docs/analytics https://approvals-api.getsimpl.com/my-ip www.3dsecure.icicibank.com/acsweb/enrollweb/icicibank/server/otpserver https://www.gogetskill.in/course?id= 127.0.0.1 https://pagead2.googlesyndication.com/pagead/gen_204?id=gmob-apps https://api.razorpay.com/v1/checkout/public https://netbanking.yesbank.co.in/netbanking/merchant https://mvnrepository.com/artifact/com.razorpay/checkout/ https://api.razorpay.com https://firebase.google.com/support/privacy/init-options https://console.firebase.google.com https://github.com/tink-crypto/tink-java https://www.paypal.com data:{choices:e.view_rules https://firebase-settings.crashlytics.com/spi/v2/platforms/android/gmp/%s/settings https://www.facebook.com https://goo.gl/naoooi http://jdom.org/jaxp/xpath/jdom https://login.yahoo.com www.gogetskill.in data:{method:null,bank:null,wallet:null,vpa:null,amount:0,razorpay_otp:!1}},ee=!1,ye= www.3dsecure.icicibank.com/acsweb/enrollweb/icicibank/auth/scode data:{method:null,bank:null,wallet:null,vpa:null,amount:0,razorpay_otp:!1}},ue=!1,pe= https://cdn.razorpay.com/static/magic/ www.recaptcha.net https://%s/%s/%s https://app-measurement.com/a https://plus.google.com/ https://cdn.razorpay.com/static/otpelf/ https://gkscoop.com/checkpayment https://accounts.google.com www.3dsecure.icicibank.com/acsweb/enrollweb/icicibank/server/accesscontrolserver https://acs.icicibank.com/acspage/cap http://api.whatsapp.com/send?phone= https://api.razorpay.com/v1/checkout https://accounts.google.com/o/oauth2/revoke?token= https://firebase.google.com/support/guides/disable-analytics https://firebase.google.com/docs/crashlytics/get-started?platform=android#add-plugin https://api.onesignal.com/ https://drive.google.com/viewer/viewer?hl=en&embedded=true&url= http://org.jdom.transform.jdomresult/feature https://lumberjack-metrics.razorpay.com/v1/frontend-metrics https://firebase.google.com/support/ https://twitter.com https://api.razorpay.com/v1/payments/ https://razorpay.com/docs/payments/payment-gateway/android-integration/standard/#list-of-razorpay-android-standard-sdk-versions-last https://www.recaptcha.net/recaptcha/api3 https://firebase.google.com/docs/android/kotlin-migration https://www.linkedin.com https://play.google.com/store/search?q=otpauth&c=apps https://login.live.com https://google.com/search? http://temporary http://org.jdom.transform.jdomsource/feature https://api.razorpay.com/v1/payments/create/ajax www.gstatic.cn/recaptcha www.http.httpclient https://github.com/scottyab/showhidepasswordedittext www.kotak.com/.*/kseclogin www.google.com	自研引擎-S

Firebase配置检测

邮箱地址提取

EMAIL	源码文件
this@abstracttypeconstructor.builtins this@abstracttypeconstructor.paramete this@createcapturedifneeded.type	自研引擎-S

第三方追踪器

名称	类别	网址
Google CrashLytics	Crash reporting	https://reports.exodus-privacy.eu.org/trackers/27
Google Firebase Analytics	Analytics	https://reports.exodus-privacy.eu.org/trackers/49
OneSignal		https://reports.exodus-privacy.eu.org/trackers/193

敏感凭证泄露

已显示 10 个secrets

1、 "com.google.firebase.crashlytics.mapping_file_id" : "00000000000000000000000000000000"
2、 "google_api_key" : "AIzaSyB7huek2AEq7JMvwo_6kyFaLEdlcQ4yn2k"
3、 "google_crash_reporting_api_key" : "AIzaSyB7huek2AEq7JMvwo_6kyFaLEdlcQ4yn2k"
4、 "image_picker_provider_authority_suffix" : ".imagepicker.provider"
5、 PHN2ZyBmaWxsPSIjRkZGRkZGIiBoZWlnaHQ9IjI0IiB2aWV3Qm94PSIwIDAgMjQgMjQiIHdpZHRoPSIyNCIgeG1sbnM9Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvc3ZnIj4gICAgPHBhdGggZD0iTTguNTkgMTYuMzRsNC41OC00LjU5LTQuNTgtNC41OUwxMCA1Ljc1bDYgNi02IDZ6Ii8+ICAgIDxwYXRoIGQ9Ik0wLS4yNWgyNHYyNEgweiIgZmlsbD0ibm9uZSIvPjwvc3ZnPg==
6、 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
7、 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
8、 t8I8n6wctuVfyNG49l3lUOrlJ4bYi1ZW
9、 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
10、 c682b8144a8dd52bc1ad63

字符串信息

建议导出为TXT，方便查看。

活动列表

显示 38 个 activities

服务列表

显示 15 个 services

广播接收者列表

显示 18 个 receivers

内容提供者列表

显示 3 个 providers

第三方SDK

SDK名称	开发者	描述信息
Google Sign-In	Google	提供使用 Google 登录的 API。
Google Play Service	Google	借助 Google Play 服务，您的应用可以利用由 Google 提供的最新功能，例如地图，Google+ 等，并通过 Google Play 商店以 APK 的形式分发自动平台更新。这样一来，您的用户可以更快地接收更新，并且可以更轻松地集成 Google 必须提供的最新信息。
File Provider	Android	FileProvider 是 ContentProvider 的特殊子类，它通过创建 content://Uri 代替 file:///Uri 以促进安全分享与应用程序关联的文件。
Jetpack App Startup	Google	App Startup 库提供了一种直接，高效的方法来在应用程序启动时初始化组件。库开发人员和应用程序开发人员都可以使用 App Startup 来简化启动顺序并显式设置初始化顺序。App Startup 允许您定义共享单个内容提供程序的组件初始化程序，而不必为需要初始化的每个组件定义单独的内容提供程序。这可以大大缩短应用启动时间。
Jetpack WorkManager	Google	使用 WorkManager API 可以轻松地调度即使在应用退出或设备重启时仍应运行的可延迟异步任务。
Firebase	Google	Firebase 提供了分析、数据库、消息传递和崩溃报告等功能，可助您快速采取行动并专注于您的用户。
Jetpack Media	Google	与其他应用共享媒体内容和控件。已被 media2 取代。
Jetpack ProfileInstaller	Google	让库能够提前预填充要由 ART 读取的编译轨迹。
Firebase Analytics	Google	Google Analytics（分析）是一款免费的应用衡量解决方案，可提供关于应用使用情况和用户互动度的分析数据。
Jetpack AppCompat	Google	Allows access to new APIs on older API versions of the platform (many using Material Design).
Jetpack Room	Google	Room 持久性库在 SQLite 的基础上提供了一个抽象层，让用户能够在充分利用 SQLite 的强大功能的同时，获享更强健的数据库访问机制。

污点分析

当apk较大时，代码量会很大，造成数据流图（ICFG）呈现爆炸式增长，所以该功能比较耗时，请先喝杯咖啡，耐心等待……

规则名称	描述信息	操作
病毒分析	使用安卓恶意软件常用的API进行污点分析	开始分析
漏洞挖掘	漏洞挖掘场景下的污点分析	开始分析
隐私合规	隐私合规场景下的污点分析：组件内污点传播、组件间污点传播、组件与库函数之间的污点传播	开始分析
密码分析	分析加密算法是否使用常量密钥、静态初始化的向量（IV）、加密模式是否使用ECB等	开始分析
Callback	因为Android中系统级的Callback并不会出现显式地进行回调方法的调用，所以如果需要分析Callback方法需要在声明文件中将其声明，这里提供一份AndroidCallbacks.txt文件，里面是一些常见的原生回调接口或类，如果有特殊接口需求，可以联系管理员	开始分析