macOS
brew install apktoollocal Homebrew formula metadata
sudo port install apktoolMacPorts ports tree · java/apktool/Portfile · source: api.github.com
brew
Tool for reverse engineering 3rd party, closed, binary Android apps. Version 3.0.2 via Homebrew; verified 2026-06-15.
install
brew install apktoollocal Homebrew formula metadata
sudo port install apktoolMacPorts ports tree · java/apktool/Portfile · source: api.github.com
sudo apt install apktoolDebian stable package indexes · apktool · source: deb.debian.org
nix profile install nixpkgs#apktoolnixpkgs package indexes · pkgs/by-name/ap/apktool/package.nix · source: api.github.com
choco install apktoolChocolatey community package catalog · apktool · source: community.chocolatey.org
scoop install main/apktoolScoop official bucket manifest trees · bucket/apktool.json · source: api.github.com
overview
Tool for reverse engineering 3rd party, closed, binary Android apps
history
Apktool is a long-running Java tool for decoding, modifying, and rebuilding Android APK files. It is one of the standard utilities in Android reverse engineering because it turns compiled resources, manifests, and smali code into a project-like tree that can be inspected and rebuilt.
Apktool's current GitHub repository was created in March 2012, but the official release blog lists releases back to 0.9.0 and 1.0.0 in 2010. The README says the project is for reverse engineering third-party, closed, binary Android apps, especially decoding resources to near-original form and rebuilding after modifications.
The official site preserves a long release line from the 0.9 and 1.x era through 2.x and into 3.x. The 2.x line became the maintenance branch, while main became the 3.x branch. The project also moved its documentation site to Docusaurus-backed pages and keeps release notes on apktool.org.
Version 3.0.0 in 2026 was a major compatibility break. Official release notes describe dropping aapt1 and 32-bit platform support, modernizing resource parsing, changing output format details, replacing some old CLI names, and adopting a new default resource-resolution model. Version 3.0.2 followed as a security and performance patch.
Apktool has broad package-manager adoption: the supplied metadata records Homebrew, Chocolatey, Debian, MacPorts, Nix, Scoop, and Ubuntu packages. The official site also links downloads, Maven artifacts, GitHub discussions, Stack Overflow, and IRC, reflecting a tool with both distro packaging and a long-lived user support footprint.
GitHub metadata showed nearly 25k stars and thousands of forks at research time. That scale is consistent with Apktool's role as a default dependency in mobile-security, app localization, Android modding, and APK compatibility workflows.
The basic flow is apktool d file.apk to decode, edit the generated project-like tree, and apktool b folder to rebuild. Official docs explain why simply unzipping an APK leaves binary XML and compiled resource files that are not practical to edit directly.
The CLI exposes decode, build, install-framework, and clean-frameworks command families. Framework files can be stored or read from a user-specified frame path, but the official docs do not present that as a fixed config-file location, so no config-file-location is recorded here.
Apktool is package-nerd significant because it is both a package and a package unpacker: it lets users explode Android's signed ZIP-based application format into resources, smali, framework references, and rebuild metadata. That makes it the bridge between Android binary distribution and editable source-like trees.
Its long packaging history also makes it a compatibility benchmark. When Android resource formats, smali, aapt/aapt2, Java versions, or Linux distro policies change, Apktool's releases often encode the fallout for reverse-engineering workflows.
security posture
escape, surveillance, or offensive capability signal.
red risk · medium confidence · escape-surveillance-offensive
Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.
executables
| Command | Kind | Exposure | Note |
|---|---|---|---|
apktool | cli | global executable |
freshness
These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.
https://github.com/iBotPeaches/Apktool
install metadata
| Package key | brew:apktool |
|---|---|
| Version | 3.0.2 |
| Package manager | Homebrew |
| Package manager page | https://formulae.brew.sh/formula/apktool |
| Homepage | https://apktool.org |
| Repository | https://github.com/iBotPeaches/Apktool |
| Upstream docs | https://apktool.org/ |
| License | Apache-2.0 |
| Source archive | https://github.com/iBotPeaches/Apktool/releases/download/v3.0.2/apktool_3.0.2.jar |
| Last updated | 2026-06-15T10:20:10-04:00 |
| Pulse | updated |
| Dependencies | openjdk |
| Bottle | available (on all) |
| Homebrew post-install | not defined |
| Service | none declared |
registry facts
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | apktool |
| Version Scheme | 0 |
| Revision | 0 |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
source database matches
Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.
apktool 2.7.0+dfsg-7
tool for reverse engineering Android apk files
https://ibotpeaches.github.io/Apktool/
sudo apt install apktoolapktool
nix profile install nixpkgs#apktoolapktool 2.7.0+dfsg-7
tool for reverse engineering Android apk files
https://ibotpeaches.github.io/Apktool/
sudo apt install apktoolapktool
sudo port install apktoolapktool
choco install apktoolmain/apktool
scoop install main/apktoolsource trail
This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.
View the package source record on GitHub.