android-app-security

thx, the community share the tips. Let’s make the world more safe.

tips

search the url scheme

1. apktool d target.apk
2. grep -rnF “deeplinkschema://“ ./target
3. Examine all deeplinks for insecure implementations

set up root enviroment

install magisk(not recommend using the Huawei,Samsung,Vivo,OPPO,Xiaomi),the google Nexus will be the best choice for app test.

install the Move Certificates plugin to capture the network flow.

Reason:

1. some apps must install Google play framework to open
2. Nexus unlock the phone is quite easy,install magisk must install the TWRP

• https://www.xda-developers.com/how-to-install-magisk/

frida

disable ssl pinning

https://github.com/frida/frida/releases
download the frida-server

//install the frida-tools
virtualenv -p python3.7 venv
source venv/bin/active
pip install frida-tools

//show app_id
frida-ps

//disable ssl pinning
frida -U -l pinning.js -f [APP_ID] --no-pause