This repository contains the scripts used to aid in the privacy investigation of Gboard and SwiftKey. The process and results of this investigation have been captured in the available report.
The scripts, addon.py, decoding_helpers.py and logbatch_decode.py been extended to support (partial) decoding of Gboard logs. The original code and execution instructions can be found in the Android Protobuf Decoding repo.
The script frida_hook_swiftkey7835.js was used to bypass the certificate pinning performed by the SwiftKey application.
A (partially) decoded protobuf definition for the LATIN_IME log source is available under gboard/gboard.proto3.
An Avro schema used to decode SwiftKey logs is available under swiftkey/swiftkey_schema.json.