Watch the demos!

• Perform quick analysis

https://github.com/user-attachments/assets/b65c3041-fde3-4803-8d99-45ca77dbe30a

• Quickly find vulnerabilities

https://github.com/user-attachments/assets/c184afae-3713-4bc0-a1d0-546c1f4eb57f

• Multiple AI Agents Support

https://github.com/user-attachments/assets/6342ea0f-fa8f-44e6-9b3a-4ceb8919a5b0

• Run with your favorite LLM Client

https://github.com/user-attachments/assets/b4a6b280-5aa9-4e76-ac72-a0abec73b809

• Analyze The APK Resources

https://github.com/user-attachments/assets/f42d8072-0e3e-4f03-93ea-121af4e66eb1

• Your AI Assistant during debugging of APK using JADX

https://github.com/user-attachments/assets/2b0bd9b1-95c1-4f32-9b0c-38b864dd6aec

It is combination of two tools:

1. JADX-AI-MCP
2. JADX MCP SERVER

🤖 What is JADX-MCP-SERVER?

JADX MCP Server is a standalone Python server that interacts with a JADX-AI-MCP plugin (see: jadx-ai-mcp) via MCP (Model Context Protocol). It lets LLMs communicate with the decompiled Android app context live.

Other projects in Zin MCP Suite

• APKTool-MCP-Server
• JADX-MCP-Server
• ZIN-MCP-Client

Current MCP Tools

The following MCP tools are available:

• fetch_current_class() — Get the class name and full source of selected class
• get_selected_text() — Get currently selected text
• get_all_classes() — List all classes in the project
• get_class_source() — Get full source of a given class
• get_method_by_name() — Fetch a method's source
• search_method_by_name() — Search method across classes
• search_classes_by_keyword() — Search for classes whose source code contains a specific keyword (supports pagination)
• get_methods_of_class() — List methods in a class
• get_fields_of_class() — List fields in a class
• get_smali_of_class() — Fetch smali of class
• get_main_activity_class() — Fetch main activity from jadx mentioned in AndroidManifest.xml file.
• get_main_application_classes_code() — Fetch all the main application classes' code based on the package name defined in the AndroidManifest.xml.
• get_main_application_classes_names() — Fetch all the main application classes' names based on the package name defined in the AndroidManifest.xml.
• get_android_manifest() — Retrieve and return the AndroidManifest.xml content.
• get_manifest_component - Retrieve specific manifest component instead of whole manifest file
• get_strings() : Fetches the strings.xml file
• get_all_resource_file_names() : Retrieve all resource files names that exists in application
• get_resource_file() : Retrieve resource file content
• rename_class() : Renames the class name
• rename_method() : Renames the method
• rename_field() : Renames the field
• rename_package() : Renames whole package
• rename_variable() : Renames the variable within a method
• debug_get_stack_frames() : Get the stack frames from jadx debugger
• debug_get_threads() : Get the insights of threads from jadx debugger
• debug_get_variables() : Get the variables from jadx debugger
• xrefs_to_class() : Find all references to a class (returns method-level and class-level references, supports pagination)
• xrefs_to_method() : Find all references to a method (includes override-related methods, supports pagination)
• xrefs_to_field() : Find all references to a field (returns methods that access the field, supports pagination)

🗒️ Sample Prompts

🔍 Basic Code Understanding

"Explain what this class does in one paragraph."

"Summarize the responsibilities of this method."

"Is there any obfuscation in this class?"

"List all Android permissions this class might requ