This unpacks Android APKs into readable form so you can examine manifests, extract resources, and analyze smali code. You'll use it when you need to see what permissions an app requests, find hardcoded API keys in strings.xml, or trace through disassembled bytecode for security analysis. The skill covers the standard decode workflow, explains what lands in each output directory (smali, res, AndroidManifest.xml), and includes practical grep commands for finding credentials, exported components, and debuggable flags. It's thorough on the analysis side but light on repackaging details. If you're doing mobile security work or reverse engineering IoT companion apps, this gives you the apktool commands and file paths you actually need.
npx skills add https://github.com/brownfinesecurity/iothackbot --skill apktool