DECX - Decompiler + X
A JADX-based Decompiler + X - Designed for AI-assisted code analysis
Overview
DECX (Decompiler + X) is a smart code analysis platform built on the JADX decompiler, designed specifically for AI-assisted code analysis. The platform provides powerful Java code analysis capabilities to AI assistants through an HTTP API, MCP (Model Context Protocol), a standalone CLI, and workflow skills.
Installation
Prerequisites
- Java: JDK 11+
- Node.js: 22.5+ for the CLI
- JADX: v1.5.2+ with plugin support if you use the GUI plugin
- Python: 3.10+ or
uv for the plugin MCP sidecar; without uv, ensure requests, fastmcp, and pydantic are available
CLI And AI Skills
For AI-assisted CLI work, install the CLI, install the DECX server JAR, then expose the bundled skills to your agent:
npm install -g @jygzyc/decx-cli
decx self install
git clone https://github.com/jygzyc/decx ~/.decx/source
mkdir -p ~/.agents
ln -s ~/.decx/source/skills ~/.agents/skills
Replace ~/.agents/skills with the skills directory expected by your agent:
| Agent | Link target |
|---|
| Claude Code | ~/.claude/skills |
| Opencode | ~/.config/opencode/skills |
| Codex | ~/.codex/skills |
| Common agent setup | ~/.agents/skills |
The skills/ directory contains:
| Skill | Use |
|---|
decx-cli | DECX CLI usage, general code navigation, source lookup, xrefs, manifest/resource inspection, and workflow routing |
decx-app-vulnhunt | APK app-layer vulnerability hunting with the SQLite blackboard workflow |
decx-framework-vulnhunt | Android framework and Binder/service vulnerability hunting on processed framework bundles |
decx-poc | Build a focused Android PoC app and optional helper server from one finalized blackboard finding or selected graph path |
decx-report | Generate HTML/Markdown reports from finalized blackboard findings |
JADX Plugin
Install the plugin from the JADX GUI plugin manager, or install a plugin JAR manually:
jadx plugins --install-jar <path-to-jadx_decx_plugin.jar>
After installation, open an APK/JAR in JADX and enable DECX. The plugin exposes the DECX HTTP API and MCP tools for the currently opened JADX project.
Usage
CLI + Skills
For agent-driven analysis, use the CLI to create a session and let the installed skills drive the detailed workflow:
decx process open target.apk --name target
decx code classes --limit 50
decx code search-global "WebView" --limit 20
decx ard exported-components
decx ard app-deeplinks
decx process close target
decx process close --port 25419
Typical skill sequence:
decx-cli for exploration, evidence gathering, and routingdecx-app-vulnhunt or decx-framework-vulnhunt for focused vulnerability huntingdecx-report for generating reports from finalized blackboard findingsdecx-poc for turning one finalized blackboard finding or selected graph path into a buildable PoC
Vulnerability hunting skills write analysis state to .decx-analysis/<target>/decx-analysis.db. App hunts initialize the blackboard with --kind android_app; framework hunts use --kind android_framework. The blackboard stores facts, intents, events, links, and chains that downstream report and PoC skills consume.
Useful command groups:
| Need | Commands |
|---|
| Session lifecycle | decx process open <file>, decx process list, decx process check, decx process close [name] [--port <port>] |
| Code analysis | decx code classes, class-source, method-source, method-context, search-global, search-class, xref-method, xref-class, xref-field, implement, subclass |
| APK analysis | decx ard app-manifest, main-activity, app-application, exported-components, app-deeplinks, app-receivers, get-aidl, all-resources, resource-file, strings |
| Framework analysis | decx ard framework collect, process <oem>, run, open [jar], plus system-service-impl <interface> |
| Live device helpers | decx ard system-services, decx ard perm-info <permission> |
| CLI/server management | decx self install, decx self update |
Notes:
