Apk2getcon

apk2getcon is a tool used on Android devices to retrieve the SELinux (Security-Enhanced Linux) context of an APK (Android Package File). SELinux is a mandatory access control (MAC) mechanism that is used to enhance the security of Android. It does this by defining and enforcing security policies on the system, including on applications.

The AndroidManifest.xml is the blueprint of the application. Through the APK2GetCon lens, this is the most critical file for initial reconnaissance. By extracting and reading the manifest, you can identify: apk2getcon