apktool-mcp-server

Q: What can apktool-mcp-server do?

apk binary decoding with smali bytecode extraction, smali bytecode file retrieval and analysis, mcp tool schema exposure and capability discovery, workspace-based project isolation and multi-apk management, stdio-based mcp transport and client communication, smali directory enumeration with hierarchical structure discovery, smali bytecode modification and in-place editing, androidmanifest.xml extraction and inspection, apktool configuration inspection and project metadata, apk rebuilding from modified source, project workspace cleanup and preparation, android resource file retrieval and inspection, android resource file modification and patching, full-text pattern search across apk project

MCP ServerFree

A MCP Server for APK Tool (Part of Android Reverse Engineering MCP Suites)

Open Source

/ 100

14 capabilities

Capabilities14 decomposed

apk binary decoding with smali bytecode extraction

Medium confidence

Wraps the APKTool CLI to decompress and decompile Android APK binaries into human-readable smali (Jasmin) bytecode, AndroidManifest.xml, and resource files. The server maintains a workspace directory structure where each decoded APK becomes a distinct project, enabling LLMs to analyze and modify Android application internals through structured file access patterns rather than binary inspection.

Solves for

I need to extract and analyze the source code from an Android APK to identify security vulnerabilitiesI want to reverse engineer an APK to understand how a competitor's app worksI need to decode an APK so I can modify its behavior and rebuild it

Best for

security researchers performing Android VAPT assessments

mobile app developers debugging obfuscated third-party libraries

LLM agents automating APK analysis workflows

Requires

APKTool CLI installed and accessible in system PATH

Python 3.9+

Write permissions to workspace directory (default: apktool_mcp_server_workspace/)

Limitations

Depends on external APKTool CLI binary — requires separate installation and PATH configuration

Decoding time scales with APK size; large enterprise apps (100MB+) may take 30+ seconds

Workspace directory can grow unbounded — no automatic cleanup of old decoded projects

What makes it unique

Exposes APKTool through MCP protocol with workspace-based project isolation, allowing LLMs to maintain multiple decoded APK contexts simultaneously and perform context-aware modifications without re-decoding. Uses STDIO transport for seamless integration with Claude Desktop and other MCP clients.

vs alternatives

Provides LLM-native APK decoding vs manual APKTool CLI usage, eliminating context switching and enabling AI agents to reason about decompiled code directly within their reasoning loop.

smali bytecode file retrieval and analysis

Medium confidence

Implements directory enumeration and file content retrieval for smali source files within decoded APK projects, with optional package-level filtering to reduce context noise. The server scans the smali/ directory tree and returns file listings or individual file contents, enabling LLMs to navigate Android application structure and locate specific classes or methods for analysis.

Solves for

I need to find all smali files in a specific package to understand the app's architectureShow me the implementation of a particular class so I can identify the vulnerabilityI want to list all files in the com.example.auth package to find authentication logic

Best for

security auditors performing targeted code review of specific Android packages

LLM agents building codebase understanding before proposing modifications

developers reverse-engineering competitor apps to understand feature implementation

Requires

APK must be previously decoded via decode_apk capability

Project directory must exist in workspace with valid smali/ subdirectory

Read permissions on workspace directory

Limitations

Package filtering is prefix-based string matching, not semantic package resolution — may return false positives

No syntax highlighting or AST parsing — returns raw smali text without semantic structure

Large APKs with 10,000+ smali files may exceed context window when listing all files

What makes it unique

Provides hierarchical smali directory enumeration with package-level filtering, allowing LLMs to progressively narrow scope from entire APK to specific packages to individual classes, reducing token consumption compared to dumping entire codebase.

vs alternatives

More efficient than generic file system tools because it understands Android package structure and can filter by package prefix, vs tools that require manual directory traversal.

mcp tool schema exposure and capability discovery

Medium confidence

Exposes all 13 MCP tools through the standard Model Context Protocol with JSON schema definitions, enabling MCP clients (Claude Desktop, Cherry Studio, Ollama) to discover available tools and understand their parameters. The server implements the MCP tools list and tool call handling endpoints, allowing AI clients to invoke APK operations through natural language requests.

Solves for

I want Claude to help me analyze an APK — what tools are available?Integrate apktool-mcp-server with my LLM client to enable APK analysisDiscover what APK operations I can automate through this MCP server

Best for

AI researchers building LLM agents for Android security analysis

developers integrating APK tools into MCP-compatible clients

security teams automating APK analysis workflows with AI assistance

Requires

MCP-compatible client (Claude Desktop, Cherry Studio, Ollama with MCP support)

Server must be running and accessible via STDIO transport

Client must implement MCP protocol version 1.0+

Limitations

Schema exposure is static — does not reflect runtime state or available projects

No capability negotiation — client must support all tool types or fail gracefully

Tool descriptions are text-based — no semantic capability matching

What makes it unique

Implements full MCP protocol compliance with schema exposure for all 13 tools, enabling seamless integration with any MCP-compatible client. Uses FastMCP framework for automatic schema generation and tool registration.

vs alternatives

Provides standardized tool discovery vs custom API documentation, allowing any MCP client to automatically discover and invoke APK tools without manual integration.

workspace-based project isolation and multi-apk management

Medium confidence

Maintains a centralized workspace directory (apktool_mcp_server_workspace/) where each decoded APK becomes an isolated project subdirectory. The server manages project naming, isolation, and lifecycle, enabling concurrent analysis of multiple APKs without cross-contamination. Projects are identified by name and persist across server restarts.

Solves for

I need to analyze multiple APKs simultaneously without them interfering with each otherKeep my APK analysis projects organized and persistent across sessionsManage multiple APK modification workflows in parallel

Best for

security teams performing batch APK analysis

LLM agents managing multiple concurrent APK projects

researchers maintaining long-term APK analysis datasets

Requires

Write permissions to workspace directory (default: apktool_mcp_server_workspace/)

Sufficient disk space for decoded APKs (typically 10-50MB per APK)

APKTOOL_WORKSPACE environment variable (optional, defaults to apktool_mcp_server_workspace/)

Limitations

Workspace directory can grow unbounded — no automatic cleanup or quota management

No project metadata or tagging system — only filesystem-based organization

No access control — all projects are accessible to any client connecting to the server

What makes it unique

Implements filesystem-based project isolation with persistent workspace, enabling LLM agents to maintain multiple APK analysis contexts across sessions. Projects are automatically organized by name in the workspace directory.

vs alternatives

Provides persistent multi-project management vs stateless tools that require re-decoding APKs for each analysis session.

stdio-based mcp transport and client communication

Medium confidence

Implements the Model Context Protocol server using FastMCP framework with STDIO transport, enabling bidirectional JSON-RPC communication with MCP clients. The server reads tool invocation requests from stdin and writes responses to stdout, allowing integration with Claude Desktop, Cherry Studio, Ollama, and other MCP-compatible clients without network configuration.

Solves for

I want to use apktool-mcp-server with Claude Desktop without setting up a network serverIntegrate APK analysis tools into my local LLM workflowEnable my AI assistant to invoke APK operations through standard MCP protocol

Best for

developers integrating APK tools into local LLM workflows

security researchers using Claude or other LLMs for APK analysis

teams deploying MCP servers in containerized or local environments

Requires

MCP-compatible client with STDIO transport support

Python 3.9+ with FastMCP library installed

Standard input/output streams available (not available in some IDE environments)

Limitations

STDIO transport is single-client only — cannot serve multiple concurrent clients

No built-in authentication or authorization — relies on OS-level process isolation

No request queuing or load balancing — blocking operations may timeout long-running APK builds

What makes it unique

Uses FastMCP framework for automatic MCP protocol implementation with STDIO transport, eliminating manual JSON-RPC handling and enabling zero-configuration integration with MCP clients. Supports Claude Desktop, Cherry Studio, and Ollama out-of-the-box.

vs alternatives

Simpler than custom API servers because MCP protocol is standardized and FastMCP handles serialization, vs building custom REST APIs for each client.

smali directory enumeration with hierarchical structure discovery

Medium confidence

Scans the smali/ directory tree of a decoded APK and returns hierarchical package structure with directory listings. The server maps Java package names to filesystem paths and provides directory enumeration at multiple levels, enabling LLMs to understand the APK's code organization and navigate to specific packages or classes.

Solves for

Show me the package structure of this APK so I can understand its organizationList all packages in the com.example.* namespace to find related functionalityNavigate the smali directory tree to locate a specific class

Best for

security researchers understanding APK code organization before analysis

LLM agents building codebase maps before proposing modifications

developers exploring third-party app structure

Requires

APK must be decoded and project must exist in workspace

smali/ directory must exist with valid package structure

Read permissions on project directory

Limitations

Returns filesystem paths, not semantic package information — no class metadata or dependencies

Large APKs with deep package hierarchies may return excessive directory listings

No caching — each query rescans the filesystem

What makes it unique

Provides hierarchical package enumeration with optional filtering, allowing LLMs to progressively explore APK structure from top-level packages to specific classes. Complements list_smali_files by providing directory-level organization.

vs alternatives

More efficient than generic directory listing because it understands Android package naming conventions and can filter by package prefix.

smali bytecode modification and in-place editing

Medium confidence

Enables atomic read-modify-write operations on smali source files within a decoded APK project. The server accepts file path and new content, validates the smali syntax (basic checks), and writes modifications back to disk. This allows LLMs to patch vulnerabilities, inject logging, or modify application behavior by editing bytecode directly without requiring full recompilation.

Solves for

I need to patch a security vulnerability by modifying the smali code for a specific methodAdd logging statements to track how user data flows through the authentication moduleDisable SSL certificate pinning by modifying the network security configuration in smali

Best for

security researchers patching vulnerabilities in APKs for testing

LLM agents automating code injection for instrumentation or behavioral modification

developers creating proof-of-concept exploits for Android security research

Requires

APK must be decoded and project must exist in workspace

Target smali file must exist in project

Write permissions to workspace directory

Limitations

No syntax validation — accepts any text, may produce invalid smali that breaks APK rebuild

No type checking or method signature validation — LLM must ensure modifications are semantically correct

No automatic register allocation — manual edits may violate register constraints and cause runtime crashes

What makes it unique

Provides direct smali file editing through MCP without requiring external IDE or build tools, enabling LLMs to propose and apply code patches in a single agent step. Uses atomic file writes to maintain consistency.

vs alternatives

Faster than manual APKTool workflows because LLM can edit smali directly without decompile-edit-recompile cycles, vs traditional Android development which requires full IDE setup.

androidmanifest.xml extraction and inspection

Medium confidence

Retrieves the decoded AndroidManifest.xml file from a project, exposing the application's declared permissions, activities, services, broadcast receivers, and intent filters. The server parses the XML and returns it in human-readable format, enabling LLMs to understand the app's security model, entry points, and declared capabilities without binary inspection.

Solves for

What permissions does this app request and what are the security implications?Find all exported activities and services that could be exploited via intent injectionIdentify the app's main entry point and understand its initialization flow

Best for

security auditors assessing Android app attack surface

LLM agents performing automated permission analysis and vulnerability detection

developers understanding third-party app capabilities before integration

Requires

APK must be decoded via decode_apk

Project must contain valid AndroidManifest.xml in root directory

Read permissions on workspace

Limitations

Returns XML only — no semantic analysis of permission implications or vulnerability scoring

Cannot detect dynamically registered receivers or services (only manifest-declared ones)

No cross-reference to actual implementation — exported components may be protected by custom permissions not visible in manifest

What makes it unique

Extracts manifest as structured XML rather than binary format, allowing LLMs to reason about declared permissions and exported components directly. Integrates with other tools to cross-reference manifest declarations with actual implementation in smali code.

vs alternatives

Provides manifest analysis without requiring APK binary parsing tools, vs generic APK inspection tools that return raw binary manifest data.

apktool configuration inspection and project metadata

Medium confidence

Retrieves the apktool.yml configuration file generated during APK decoding, which contains metadata about the APK (version, SDK targets, framework resources, build configuration). This YAML file documents how APKTool decompiled the APK and what frameworks were used, enabling LLMs to understand the build context and compatibility constraints.

Solves for

What Android SDK version was this app built for and what's the minimum supported version?Understand the APKTool configuration to know what framework resources were usedCheck if the APK uses custom frameworks that might affect rebuilding

Best for

security researchers understanding APK build configuration and compatibility

LLM agents determining rebuild compatibility before applying patches

developers assessing SDK version requirements for compatibility analysis

Requires

APK must be decoded via decode_apk

apktool.yml must exist in project root

Read permissions on workspace

Limitations

Read-only inspection — cannot modify build configuration through this tool

Metadata is generated by APKTool and may not reflect original build system (Gradle, etc.)

No validation of configuration consistency — may contain stale or incorrect entries

What makes it unique

Exposes APKTool's internal configuration as queryable metadata, allowing LLMs to understand build context and make informed decisions about compatibility before rebuilding. Unique to MCP-based APK tools.

vs alternatives

Provides structured build metadata vs manual inspection of apktool.yml files, enabling LLM agents to reason about SDK versions and framework dependencies programmatically.

apk rebuilding from modified source

Medium confidence

Invokes APKTool to recompile a modified project directory back into a signed APK binary. The server coordinates the rebuild process, handles APKTool CLI execution, and returns the path to the rebuilt APK. This enables LLMs to apply code modifications and generate testable APK artifacts without manual build tool invocation.

Solves for

I've modified the smali code — now rebuild the APK so I can test the changesGenerate a patched APK with the vulnerability fixes I've appliedCreate a test APK with instrumentation code injected for dynamic analysis

Best for

security researchers creating patched APKs for vulnerability testing

LLM agents automating end-to-end APK modification workflows

developers building proof-of-concept modified apps

Requires

APK must be previously decoded

Project directory must exist with valid smali/ and res/ subdirectories

APKTool CLI must be installed and in PATH

Limitations

Rebuild time scales with APK size — large apps may take 60+ seconds

No automatic signing — rebuilt APK requires manual signing or integration with signing tool

Smali syntax errors in modified files will cause build failure with cryptic APKTool error messages

What makes it unique

Automates APK rebuilding through MCP, eliminating manual APKTool CLI invocation and enabling LLMs to complete full modify-rebuild cycles within a single agent session. Maintains workspace isolation for concurrent projects.

vs alternatives

Faster than manual APKTool workflows because LLM can trigger rebuilds programmatically, vs developers manually running apktool build commands.

project workspace cleanup and preparation

Medium confidence

Prepares a decoded APK project for rebuilding by cleaning intermediate files and build artifacts generated by APKTool. The server removes build caches and temporary files that may interfere with rebuilding, ensuring a clean state for subsequent build operations. This is typically called before build_apk to guarantee consistency.

Solves for

Clean up the project before rebuilding to ensure no stale artifacts interfereReset the project state after failed builds to retry from a clean statePrepare the project for a fresh rebuild after multiple modifications

Best for

LLM agents managing multi-step APK modification workflows

developers recovering from failed builds by cleaning intermediate state

security researchers ensuring reproducible APK rebuilds

Requires

Project must exist in workspace

Write permissions to project directory

Project should not be actively in use by other processes

Limitations

Destructive operation — removes files that cannot be recovered without re-decoding

No dry-run mode — cannot preview what will be deleted

May fail silently if permissions prevent deletion of certain files

What makes it unique

Provides explicit project cleanup through MCP, enabling LLM agents to manage workspace state between operations. Integrated with build_apk to ensure clean rebuilds.

vs alternatives

Eliminates manual file deletion and ensures consistent project state vs developers manually cleaning build artifacts.

android resource file retrieval and inspection

Medium confidence

Enumerates and retrieves Android resource files (strings.xml, colors.xml, layouts, drawables, etc.) from the res/ directory of a decoded APK. The server provides directory listing and file content access, enabling LLMs to analyze resource definitions, UI layouts, and string constants without binary inspection.

Solves for

Find hardcoded API endpoints or secrets in strings.xmlAnalyze the app's UI structure by examining layout XML filesIdentify all drawable resources to understand the app's visual assets

Best for

security researchers searching for hardcoded credentials or API endpoints in resources

LLM agents analyzing app configuration and UI structure

developers understanding resource organization in third-party apps

Requires

APK must be decoded via decode_apk

Project must contain valid res/ directory

Read permissions on workspace

Limitations

No binary resource parsing — cannot inspect compiled resources (9-patch images, compiled layouts)

Large resource directories may exceed context window when listing all files

No semantic analysis of resource references — cannot trace which code uses which resources

What makes it unique

Provides structured resource enumeration with type filtering, allowing LLMs to navigate Android resource hierarchy and locate specific resource types. Complements smali analysis by exposing non-code assets.

vs alternatives

More efficient than generic file system tools because it understands Android resource structure and can filter by resource type (strings, layouts, drawables, etc.).

android resource file modification and patching

Medium confidence

Enables modification of Android resource files (XML-based resources like strings.xml, layouts, colors.xml) within a decoded APK project. The server accepts file path and new content, writes modifications back to disk, and allows LLMs to patch configuration, UI layouts, or string constants without recompiling smali code.

Solves for

Modify strings.xml to change hardcoded API endpoints for testingPatch layout XML files to modify UI behavior or appearanceUpdate resource configuration files to change app behavior

Best for

security researchers patching resource-based configurations for testing

LLM agents modifying app behavior through resource changes

developers creating test variants with different resource configurations

Requires

APK must be decoded and project must exist in workspace

Target resource file must exist in project

Write permissions to workspace directory

Limitations

No XML validation — accepts any text, may produce invalid XML that breaks APK rebuild

No semantic validation of resource references — modifying a resource may break code that references it

Cannot modify binary resources (compiled layouts, 9-patch images)

What makes it unique

Enables resource-level modifications alongside smali code patching, allowing LLMs to modify app behavior through both code and configuration changes. Unique to MCP-based APK tools that expose resource editing.

vs alternatives

Faster than manual resource editing because LLM can modify XML directly without IDE setup, vs traditional Android development requiring Android Studio.

full-text pattern search across apk project

Medium confidence

Implements regex-based or literal string search across all files in a decoded APK project (smali code, resources, manifests). The server scans the project directory tree and returns matching file paths and line numbers, enabling LLMs to locate specific code patterns, hardcoded values, or configuration strings without manual file traversal.

Solves for

Find all occurrences of a hardcoded API endpoint across the entire APKSearch for specific method calls or class references to understand code flowLocate all instances of a vulnerability pattern (e.g., SQL injection, hardcoded credentials)

Best for

security researchers performing pattern-based vulnerability scanning

LLM agents identifying code locations for targeted analysis or patching

developers understanding code dependencies and cross-references

Requires

APK must be decoded and project must exist in workspace

Read permissions on project directory

Valid regex pattern (if using regex mode)

Limitations

No semantic search — only literal string or regex matching, cannot find equivalent code patterns

Large APKs with millions of lines may timeout or return excessive results

Regex complexity may cause performance degradation — no query optimization

What makes it unique

Provides full-text search across entire APK project with line-number reporting, enabling LLMs to locate specific patterns without manual file enumeration. Supports both literal and regex search modes.

vs alternatives

More efficient than manual grep-based workflows because search is integrated into MCP and returns structured results with context, vs developers manually running grep commands.

Capabilities are decomposed by AI analysis. Each maps to specific user intents and improves with match feedback.

Related Artifactssharing capabilities

Artifacts that share capabilities with apktool-mcp-server, ranked by overlap. Discovered automatically through the match graph.

MCP Server39

jadx-ai-mcp

Plugin for JADX to integrate MCP server

smali bytecode access and analysis for obfuscated codeandroid resource inspection and manifest analysis via mcpmcp-bridged cross-reference tracking for decompiled android codecodebase-aware code search with keyword and semantic filtering

4 shared capabilities

MCP Server40

ida-pro-mcp

AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.

binary metadata extraction (functions, strings, imports, types)decompilation and disassembly retrieval with cross-reference analysis

2 shared capabilities

MCP Server39

mcp-security-hub

A growing collection of MCP servers bringing offensive security tools to AI assistants. Nmap, Ghidra, Nuclei, SQLMap, Hashcat and more.

binary-analysis-with-ghidra-decompilation

1 shared capability

MCP Server44

hexstrike-ai

HexStrike AI MCP Agents is an advanced MCP server that lets AI agents (Claude, GPT, Copilot, etc.) autonomously run 150+ cybersecurity tools for automated pentesting, vulnerability discovery, bug bounty automation, and security research. Seamlessly bridge LLMs with real-world offensive security capa

binary analysis and reverse engineering with ghidra integration

1 shared capability

MCP Server39

ida-pro-mcp

AI-powered reverse engineering assistant that bridges IDA Pro with language models through MCP.

ida pro decompilation and disassembly exposure via mcp tools

1 shared capability

MCP Server44

hexstrike-ai

binary analysis and reverse engineering with ghidra integration

1 shared capability

Best For

✓security researchers performing Android VAPT assessments
✓mobile app developers debugging obfuscated third-party libraries
✓LLM agents automating APK analysis workflows
✓security auditors performing targeted code review of specific Android packages
✓LLM agents building codebase understanding before proposing modifications
✓developers reverse-engineering competitor apps to understand feature implementation
✓AI researchers building LLM agents for Android security analysis
✓developers integrating APK tools into MCP-compatible clients

Known Limitations

⚠Depends on external APKTool CLI binary — requires separate installation and PATH configuration
⚠Decoding time scales with APK size; large enterprise apps (100MB+) may take 30+ seconds
⚠Workspace directory can grow unbounded — no automatic cleanup of old decoded projects
⚠Cannot decode APKs with custom encryption or anti-tampering protections that bypass APKTool
⚠Package filtering is prefix-based string matching, not semantic package resolution — may return false positives
⚠No syntax highlighting or AST parsing — returns raw smali text without semantic structure

Requirements

APKTool CLI installed and accessible in system PATHPython 3.9+Write permissions to workspace directory (default: apktool_mcp_server_workspace/)Java Runtime Environment (JRE) for APKTool executionAPK must be previously decoded via decode_apk capabilityProject directory must exist in workspace with valid smali/ subdirectoryRead permissions on workspace directoryMCP-compatible client (Claude Desktop, Cherry Studio, Ollama with MCP support)

Input / Output

Accepts: file path to .apk binary, project name (string), optional package filter (string prefix), none (discovery is automatic), JSON-RPC 2.0 requests via stdin, file path relative to project (string), new file content (raw smali bytecode text), optional resource type filter (string), new file content (raw XML or resource text), search pattern (string or regex), optional flags (case-sensitive, regex mode, etc.)

Produces: smali bytecode files, AndroidManifest.xml, resource directories (res/), apktool.yml configuration, list of file paths (for list_smali_files), raw smali bytecode text (for get_smali_file), JSON schema definitions for all 13 tools, tool names, descriptions, and parameter specifications, project directory path (string), list of projects in workspace, JSON-RPC 2.0 responses via stdout, list of directory paths representing package structure (string), confirmation message (string), error message if write fails, XML text (AndroidManifest.xml content), YAML text (apktool.yml content), file path to rebuilt APK (string), error message if build fails, error message if cleanup fails, list of resource file paths (for list_resources), raw resource file content (for get_resource_file), list of matching file paths with line numbers and context (string)

UnfragileRank

Adoption18%(25% weight)

Quality30%(25% weight)

Ecosystem60%(15% weight)

Match Graph25%(30% weight)

Freshness75%(5% weight)

UnfragileRank is computed from adoption signals, documentation quality, ecosystem connectivity, match graph feedback, and freshness. No artifact can pay for a higher rank.

Type: MCP Server

14 capabilities

Visit apktool-mcp-server→

Repository Details

370

Stars

Forks

Python

Language

Apache-2.0

License

Topics

aiandroidapktoolllmmcpmcp-servermobilereverse-engineeringvapt

Last commit: Sep 12, 2025

About

A MCP Server for APK Tool (Part of Android Reverse Engineering MCP Suites)

Alternatives to apktool-mcp-server

IntelliCode46Extension

AI-assisted development

Compare →

GitHub Copilot Chat49Extension

AI chat features powered by Copilot

Compare →

GitHub Copilot48Extension

Your AI pair programmer

Compare →

Claude Code for VS Code48Extension

Claude Code for VS Code: Harness the power of Claude Code without leaving your IDE

Compare →

Are you the builder of apktool-mcp-server?

Claim this artifact to get a verified badge, access match analytics, see which intents users search for, and manage your listing.

Claim this artifact →Verification via email

Get the weekly brief

New tools, rising stars, and what's actually worth your time. No spam.

Data Sources

mcp registry

Looking for something else?

Search →

Capabilities14 decomposed

apk binary decoding with smali bytecode extraction

Medium confidence

Solves for

Best for

security researchers performing Android VAPT assessments

mobile app developers debugging obfuscated third-party libraries

LLM agents automating APK analysis workflows

Requires

APKTool CLI installed and accessible in system PATH

Python 3.9+

Write permissions to workspace directory (default: apktool_mcp_server_workspace/)

Limitations

Depends on external APKTool CLI binary — requires separate installation and PATH configuration

Decoding time scales with APK size; large enterprise apps (100MB+) may take 30+ seconds

Workspace directory can grow unbounded — no automatic cleanup of old decoded projects

What makes it unique

vs alternatives

Provides LLM-native APK decoding vs manual APKTool CLI usage, eliminating context switching and enabling AI agents to reason about decompiled code directly within their reasoning loop.

smali bytecode file retrieval and analysis

Medium confidence

Solves for

Best for

security auditors performing targeted code review of specific Android packages

LLM agents building codebase understanding before proposing modifications

developers reverse-engineering competitor apps to understand feature implementation

Requires

APK must be previously decoded via decode_apk capability

Project directory must exist in workspace with valid smali/ subdirectory

Read permissions on workspace directory

Limitations

Package filtering is prefix-based string matching, not semantic package resolution — may return false positives

No syntax highlighting or AST parsing — returns raw smali text without semantic structure

Large APKs with 10,000+ smali files may exceed context window when listing all files

What makes it unique

vs alternatives

More efficient than generic file system tools because it understands Android package structure and can filter by package prefix, vs tools that require manual directory traversal.

mcp tool schema exposure and capability discovery

Medium confidence

Solves for

Best for

AI researchers building LLM agents for Android security analysis

developers integrating APK tools into MCP-compatible clients

security teams automating APK analysis workflows with AI assistance

Requires

MCP-compatible client (Claude Desktop, Cherry Studio, Ollama with MCP support)

Server must be running and accessible via STDIO transport

Client must implement MCP protocol version 1.0+

Limitations

Schema exposure is static — does not reflect runtime state or available projects

No capability negotiation — client must support all tool types or fail gracefully

Tool descriptions are text-based — no semantic capability matching

What makes it unique

vs alternatives

Provides standardized tool discovery vs custom API documentation, allowing any MCP client to automatically discover and invoke APK tools without manual integration.

workspace-based project isolation and multi-apk management

Medium confidence

Solves for

Best for

security teams performing batch APK analysis

LLM agents managing multiple concurrent APK projects

researchers maintaining long-term APK analysis datasets

Requires

Write permissions to workspace directory (default: apktool_mcp_server_workspace/)

Sufficient disk space for decoded APKs (typically 10-50MB per APK)

APKTOOL_WORKSPACE environment variable (optional, defaults to apktool_mcp_server_workspace/)

Limitations

Workspace directory can grow unbounded — no automatic cleanup or quota management

No project metadata or tagging system — only filesystem-based organization

No access control — all projects are accessible to any client connecting to the server

What makes it unique

vs alternatives

Provides persistent multi-project management vs stateless tools that require re-decoding APKs for each analysis session.

stdio-based mcp transport and client communication

Medium confidence

Solves for

Best for

developers integrating APK tools into local LLM workflows

security researchers using Claude or other LLMs for APK analysis

teams deploying MCP servers in containerized or local environments

Requires

MCP-compatible client with STDIO transport support

Python 3.9+ with FastMCP library installed

Standard input/output streams available (not available in some IDE environments)

Limitations

STDIO transport is single-client only — cannot serve multiple concurrent clients

No built-in authentication or authorization — relies on OS-level process isolation

No request queuing or load balancing — blocking operations may timeout long-running APK builds

What makes it unique

vs alternatives

Simpler than custom API servers because MCP protocol is standardized and FastMCP handles serialization, vs building custom REST APIs for each client.

smali directory enumeration with hierarchical structure discovery

Medium confidence

Solves for

Best for

security researchers understanding APK code organization before analysis

LLM agents building codebase maps before proposing modifications

developers exploring third-party app structure

Requires

APK must be decoded and project must exist in workspace

smali/ directory must exist with valid package structure

Read permissions on project directory

Limitations

Returns filesystem paths, not semantic package information — no class metadata or dependencies

Large APKs with deep package hierarchies may return excessive directory listings

No caching — each query rescans the filesystem

What makes it unique

vs alternatives

More efficient than generic directory listing because it understands Android package naming conventions and can filter by package prefix.

smali bytecode modification and in-place editing

Medium confidence

Solves for

Best for

security researchers patching vulnerabilities in APKs for testing

LLM agents automating code injection for instrumentation or behavioral modification

developers creating proof-of-concept exploits for Android security research

Requires

APK must be decoded and project must exist in workspace

Target smali file must exist in project

Write permissions to workspace directory

Limitations

No syntax validation — accepts any text, may produce invalid smali that breaks APK rebuild

No type checking or method signature validation — LLM must ensure modifications are semantically correct

No automatic register allocation — manual edits may violate register constraints and cause runtime crashes

What makes it unique

vs alternatives

Faster than manual APKTool workflows because LLM can edit smali directly without decompile-edit-recompile cycles, vs traditional Android development which requires full IDE setup.

androidmanifest.xml extraction and inspection

Medium confidence

Solves for

Best for

security auditors assessing Android app attack surface

LLM agents performing automated permission analysis and vulnerability detection

developers understanding third-party app capabilities before integration

Requires

APK must be decoded via decode_apk

Project must contain valid AndroidManifest.xml in root directory

Read permissions on workspace

Limitations

Returns XML only — no semantic analysis of permission implications or vulnerability scoring

Cannot detect dynamically registered receivers or services (only manifest-declared ones)

No cross-reference to actual implementation — exported components may be protected by custom permissions not visible in manifest

What makes it unique

vs alternatives

Provides manifest analysis without requiring APK binary parsing tools, vs generic APK inspection tools that return raw binary manifest data.

apktool configuration inspection and project metadata

Medium confidence

Solves for

Best for

security researchers understanding APK build configuration and compatibility

LLM agents determining rebuild compatibility before applying patches

developers assessing SDK version requirements for compatibility analysis

Requires

APK must be decoded via decode_apk

apktool.yml must exist in project root

Read permissions on workspace

Limitations

Read-only inspection — cannot modify build configuration through this tool

Metadata is generated by APKTool and may not reflect original build system (Gradle, etc.)

No validation of configuration consistency — may contain stale or incorrect entries

What makes it unique

vs alternatives

Provides structured build metadata vs manual inspection of apktool.yml files, enabling LLM agents to reason about SDK versions and framework dependencies programmatically.

apk rebuilding from modified source

Medium confidence

Solves for

Best for

security researchers creating patched APKs for vulnerability testing

LLM agents automating end-to-end APK modification workflows

developers building proof-of-concept modified apps

Requires

APK must be previously decoded

Project directory must exist with valid smali/ and res/ subdirectories

APKTool CLI must be installed and in PATH

Limitations

Rebuild time scales with APK size — large apps may take 60+ seconds

No automatic signing — rebuilt APK requires manual signing or integration with signing tool

Smali syntax errors in modified files will cause build failure with cryptic APKTool error messages

What makes it unique

vs alternatives

Faster than manual APKTool workflows because LLM can trigger rebuilds programmatically, vs developers manually running apktool build commands.

project workspace cleanup and preparation

Medium confidence

Solves for

Best for

LLM agents managing multi-step APK modification workflows

developers recovering from failed builds by cleaning intermediate state

security researchers ensuring reproducible APK rebuilds

Requires

Project must exist in workspace

Write permissions to project directory

Project should not be actively in use by other processes

Limitations

Destructive operation — removes files that cannot be recovered without re-decoding

No dry-run mode — cannot preview what will be deleted

May fail silently if permissions prevent deletion of certain files

What makes it unique

Provides explicit project cleanup through MCP, enabling LLM agents to manage workspace state between operations. Integrated with build_apk to ensure clean rebuilds.

vs alternatives

Eliminates manual file deletion and ensures consistent project state vs developers manually cleaning build artifacts.

android resource file retrieval and inspection

Medium confidence

Solves for

Find hardcoded API endpoints or secrets in strings.xmlAnalyze the app's UI structure by examining layout XML filesIdentify all drawable resources to understand the app's visual assets

Best for

security researchers searching for hardcoded credentials or API endpoints in resources

LLM agents analyzing app configuration and UI structure

developers understanding resource organization in third-party apps

Requires

APK must be decoded via decode_apk

Project must contain valid res/ directory

Read permissions on workspace

Limitations

No binary resource parsing — cannot inspect compiled resources (9-patch images, compiled layouts)

Large resource directories may exceed context window when listing all files

No semantic analysis of resource references — cannot trace which code uses which resources

What makes it unique

vs alternatives

More efficient than generic file system tools because it understands Android resource structure and can filter by resource type (strings, layouts, drawables, etc.).

android resource file modification and patching

Medium confidence

Solves for

Modify strings.xml to change hardcoded API endpoints for testingPatch layout XML files to modify UI behavior or appearanceUpdate resource configuration files to change app behavior

Best for

security researchers patching resource-based configurations for testing

LLM agents modifying app behavior through resource changes

developers creating test variants with different resource configurations

Requires

APK must be decoded and project must exist in workspace

Target resource file must exist in project

Write permissions to workspace directory

Limitations

No XML validation — accepts any text, may produce invalid XML that breaks APK rebuild

No semantic validation of resource references — modifying a resource may break code that references it

Cannot modify binary resources (compiled layouts, 9-patch images)

What makes it unique

vs alternatives

Faster than manual resource editing because LLM can modify XML directly without IDE setup, vs traditional Android development requiring Android Studio.

full-text pattern search across apk project

Medium confidence

Solves for

Best for

security researchers performing pattern-based vulnerability scanning

LLM agents identifying code locations for targeted analysis or patching

developers understanding code dependencies and cross-references

Requires

APK must be decoded and project must exist in workspace

Read permissions on project directory

Valid regex pattern (if using regex mode)

Limitations

No semantic search — only literal string or regex matching, cannot find equivalent code patterns

Large APKs with millions of lines may timeout or return excessive results

Regex complexity may cause performance degradation — no query optimization

What makes it unique

vs alternatives

More efficient than manual grep-based workflows because search is integrated into MCP and returns structured results with context, vs developers manually running grep commands.

Capabilities are decomposed by AI analysis. Each maps to specific user intents and improves with match feedback.

Alternatives to apktool-mcp-server

IntelliCode46Extension

AI-assisted development

Compare →

GitHub Copilot Chat49Extension

AI chat features powered by Copilot

Compare →

GitHub Copilot48Extension

Your AI pair programmer

Compare →

Claude Code for VS Code48Extension

Claude Code for VS Code: Harness the power of Claude Code without leaving your IDE

Compare →

apktool-mcp-server

Capabilities14 decomposed

apk binary decoding with smali bytecode extraction

smali bytecode file retrieval and analysis

mcp tool schema exposure and capability discovery

workspace-based project isolation and multi-apk management

stdio-based mcp transport and client communication

smali directory enumeration with hierarchical structure discovery

smali bytecode modification and in-place editing

androidmanifest.xml extraction and inspection

apktool configuration inspection and project metadata

apk rebuilding from modified source

project workspace cleanup and preparation

android resource file retrieval and inspection

android resource file modification and patching

full-text pattern search across apk project

Related Artifactssharing capabilities

jadx-ai-mcp

ida-pro-mcp

mcp-security-hub

hexstrike-ai

ida-pro-mcp

hexstrike-ai

Best For

Known Limitations

Requirements

Input / Output

UnfragileRank

Repository Details

About

Categories

Alternatives to apktool-mcp-server

Are you the builder of apktool-mcp-server?

Get the weekly brief

Data Sources

apktool-mcp-server

Capabilities14 decomposed

apk binary decoding with smali bytecode extraction

smali bytecode file retrieval and analysis

mcp tool schema exposure and capability discovery

workspace-based project isolation and multi-apk management

stdio-based mcp transport and client communication

smali directory enumeration with hierarchical structure discovery

smali bytecode modification and in-place editing

androidmanifest.xml extraction and inspection

apktool configuration inspection and project metadata

apk rebuilding from modified source

project workspace cleanup and preparation

android resource file retrieval and inspection

android resource file modification and patching

full-text pattern search across apk project

Related Artifactssharing capabilities

jadx-ai-mcp

ida-pro-mcp

mcp-security-hub

hexstrike-ai

ida-pro-mcp

hexstrike-ai

Best For

Known Limitations

Requirements

Input / Output

UnfragileRank

Repository Details

About

Categories

Alternatives to apktool-mcp-server

Are you the builder of apktool-mcp-server?

Get the weekly brief

Data Sources