Mercury is a security assessment framework for the Android platform. It allows you to dynamically interact with the IPC endpoints exported by an application installed on a device.
Mercury is open source software, maintained by MWR InfoSecurity, and can be downloaded from:
mwr.to/mercury
Mercury provides similar functionality to a number of static analysis tools, such as aapt, but offers far more flexibility by allowing you to interact with these endpoints from the context of an unprivileged application running on the same device. The Android sandbox is designed to restrict the access of an unprivileged application to other applications, and the underlying device, without requesting appropriate permissions. You will be surprised how much access you actually have...
See INSTALLING.
Mercury is released under the MWR Code License v1. See LICENSE for full details.
The public source repository for Mercury is hosted on GitHub:
https://github.com/mwrlabs/mercury
Bug reports, feature requests, comments and questions can be submitted through the GitHub Issues feature, or sent to:
mercury [at] mwrinfosecurity.com
Follow the Mercury Project on Twitter:
@droidhg