Andriller – is software utility with a collection of forensic tools for smartphones. It performs read-only, forensically sound, non-destructive acquisition from Android devices.
It has features, such as powerful Lockscreen cracking for Pattern, PIN code, or Password; custom decoders for Apps data from Android (some Apple iOS & Windows) databases for decoding communications.
Extraction and decoders produce reports in HTML and Excel formats.
It is highly advised to setup a virtual environment to install Andriller and its dependencies in it. However, it is not essential, and the global environment can also be used. Depending on how Python was setup, it may be needed to substitute python
and pip
to python3
and pip3
retrospectively for the instructions below.
Windows only: when installing Python from, make sure Add Python to PATH is ticked.
adb
python3-tk
[Ubuntu/Debian] Install from Terminal:
sudo apt-get install android-tools-adb python3-tk
[Mac] Install from Homebrew:
brew install android-platform-tools
[Windows] : Included.
Create a virtual environment using Python 3:
python3 -m venv env
Activate the virtual environment (Linux/Mac):
source env/bin/activate
Activate the virtual environment (Windows):
.\env\Scripts\activate
Install Andriller with its Python dependencies (same command to upgrade it):
pip install andriller -U
python -m andriller
Playwright-MCP (Model Context Protocol) is a cutting-edge tool designed to bridge the gap between AI…
JBDev is a specialized development tool designed to streamline the creation and debugging of jailbreak…
The Kereva LLM Code Scanner is an innovative static analysis tool tailored for Python applications…
Nuclei-Templates-Labs is a dynamic and comprehensive repository designed for security researchers, learners, and organizations to…
SSH-Stealer and RunAs-Stealer are malicious tools designed to stealthily harvest SSH credentials, enabling attackers to…
Control flow flattening is a common obfuscation technique used by OLLVM (Obfuscator-LLVM) to transform executable…