A CLI-based jar file scanner that utilizes the Procyon decompiler to analyze jar files and detect potentially malicious keywords.
- Install
Node.js (v16+)andnpm (v8+) - Download the repository from this
GitHub's releases - Download Procyon from GitHub and save it as
procyon.jarinside the root of the folder - Inside the unzipped folder, run
install.bat - Then to decompile a jar file, drag and drop your
.jarfile ontostart.bat
You can customize the configuration and create/delete rules to your liking in config.json. There's already some rules that I've personally made that you can use freely. If you would like to make your own rules, just follow the syntax used, its not case sensitive.
I myself am not responsible for any damages that may happen when using this program, even if you are just using the program or just scanning a .jar file. By using this program you understand that you are fully responsible for any damages/events that may occur.