Android Security Configuration Checker is a command-line tool designed to ensure compliance of Android device configurations with CIS (Center for Internet Security) benchmarks.
- CIS Benchmark Compliance: validate Android device settings against CIS benchmarks to ensure security best practices.
- Custom checks: Define custom checks using ADB commands to address specific compliance requirements beyond CIS benchmarks.
- Reporting: Generate detailed CSV reports with compliance status for each verified setting.
- Clone the repository:
git clone https://github.com/saladandonionrings/CIS-Android-Audit.git
- Install dependencies:
cd CIS-Android-Audit pip3 install -r requirements.txt
- Ensure your Android device is connected to your computer and ADB is enabled.
- Run the script with your device and configuration file:
python3 cis-audit-android.py --device <device_id> --config <path_to_configuration_file>
The configuration file (default : settings.json) contains the expected settings and CIS benchmark to be verified.
This project is licensed under the MIT License - see the LICENSE file for details.
- Inspired by CIS benchmarks for Android devices.
- Built with Python and ADB.