android-reverse-engineering-resources
Tools
Open source apk decompiler
Paid apk decompiler with debugger
Tools i want to test
- https://codeshare.frida.re/
- https://github.com/NotSoSecure/android_application_analyzer
- https://github.com/MobSF/Mobile-Security-Framework-MobSF
Bypassing android ssl pinning
Data transformation/crypto stuff
Root physycal android device
- Search device model here: https://forum.xda-developers.com/
Notes
Signing a jar
https://stackoverflow.com/questions/31911149/adb-install-parse-failed-unexpected-exception
Getting invalid sha1 error after signing: https://stackoverflow.com/questions/8176166/invalid-sha1-signature-file-digest
ADB
Start and stop app via adb
adb shell am start com.my.app/<activity>
adb shell am force-stop com.my.app.package
Start app activity and wait for debugger attach
adb shell am start -D -S -n com.my.app/<activity>
Get android_id from device with adb
https://stackoverflow.com/questions/56577931/how-to-find-android-id-from-device-not-programmatically
Get & Set (Android <= 7)
adb shell settings get secure android_id
adb shell settings put secure android_id <android_id>
Get app logs
adb logcat com.my.app
Find local db files from app
On a rooted android:
adb shell
cd /data/data/com.my.app/databases