mahongyin/API-Security
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

AES

Browse Source
This commit is contained in:
mahongyin
2021-03-24 18:04:50 +08:00
parent 28c433af4a
commit ba6eb721e1
26 changed files with 2401 additions and 158 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
app/build.gradle
View File

@@ -11,16 +11,10 @@ android {
versionName "1.0"
testInstrumentationRunner 'androidx.test.runner.AndroidJUnitRunner'
// ndk{
// //生成so库名称 也是System.load
// moduleName "apisecurity-lib"
// abiFilters "armeabi-v7a"
// }
externalNativeBuild {
cmake {
cppFlags ""
// abiFilters 'x86', 'x86_64', 'armeabi', 'armeabi-v7a', 'arm64-v8a'
}
ndk{
//生成so库名称 也是System.load
moduleName "apisecurity-lib"
// abiFilters 'x86', 'armeabi-v7a'
}
}
@@ -39,6 +33,7 @@ android {
release {
debuggable false//xml android:debuggable="false"
minifyEnabled false
zipAlignEnabled true
signingConfig signingConfigs.release
proguardFiles getDefaultProguardFile('proguard-android.txt'), 'proguard-rules.pro'
}
@@ -53,7 +48,8 @@ android {
path "CMakeLists.txt"
}
}
sourceSets.main.jniLibs.srcDirs = ['libs'] //为了直接读取 lib目录下 arm64-v8a/libold.so
//这里libold.so 是hook用的实际是apk 为了读源文件签名hook
sourceSets.main.jniLibs.srcDirs = ['libs'] //为了直接读取 lib目录下 arm64-v8a/libold.so 和api-so无关
}

4
app/src/main/cpp/apisecurity-lib.cpp
View File

@@ -534,4 +534,8 @@ Java_cn_android_security_APISecurity_verifyApp(JNIEnv *env, jclass clazz,
LOGE("非法调用5SHA1: %s", ss);
isInit = false;
}
}extern "C"
JNIEXPORT jstring JNICALL
Java_cn_android_security_APISecurity_getRelayPackName(JNIEnv *env, jclass clazz) {
// TODO: implement getRelayPackName()
}

25
app/src/main/java/cn/android/sample/MyApplication.java
View File

@@ -1,8 +1,6 @@
package cn.android.sample;
/**
* 项目名 FileTransfer
* 所在包 bin.mt.apksignaturekillerplus
* 作者 mahongyin
* 时间 2020-03-16 10:55
* 邮箱 mhy.work@qq.com
@@ -18,16 +16,12 @@ import android.content.pm.PackageManager;
import android.content.pm.Signature;
import android.content.pm.SigningInfo;
import android.os.Build;
import android.os.Parcel;
import android.util.Base64;
import android.util.Log;
import java.io.ByteArrayInputStream;
import java.io.DataInputStream;
import java.io.File;
import java.io.FileOutputStream;
import java.io.InputStream;
import java.io.OutputStream;
import java.lang.reflect.Constructor;
import java.lang.reflect.Field;
import java.lang.reflect.InvocationHandler;
@@ -49,20 +43,7 @@ public class MyApplication extends Application implements InvocationHandler {
public MyApplication() {
// 在构造函数里提早检测
// earlyCheckSign();
}
void earlyCheckSign() {
// 手动构造 context
try {
Context context = APISecurity.createContext();
//用新 context 校验签名的过程(正常的检测一样)
String sing = APISecurity.getInstalledAPKSignature(context, context.getPackageName());
Log.e("mhyLog手动构造", sing);
} catch (Exception e) {
e.printStackTrace();
}
AppSigning.earlyCheckSign();
}
private void copyFile(Context context, final String fileName) {
@@ -86,7 +67,7 @@ public class MyApplication extends Application implements InvocationHandler {
//再这看 不一定靠谱
//在签名校验被hook 之后重置PackageManager
/*在这里 重置PackageManager 只要在验证前重置即可*/
// AppSigning.resetPackageManager(getBaseContext());
AppSigning.resetPackageManager(getBaseContext());
}
/**
@@ -149,7 +130,7 @@ public class MyApplication extends Application implements InvocationHandler {
if (!apkPath.exists()) {
// apkPath= new File(this.getPackageResourcePath());
// apkPath= new File(this.getPackageCodePath());
throw new RuntimeException("libold.so未就位libs/ABI对应目录/libold.so");
throw new RuntimeException("libold.so未就位可手动复制原包->命名libold.so放入->libs/ABI对应目录/libold.so");
}
Object pkgParserPkg = parsePackageMtd.invoke(pkgParser, apkPath, PackageManager.GET_SIGNING_CERTIFICATES);//Package
Method collectCertificatesMtd = pkgParserCls.getDeclaredMethod("collectCertificates", pkgParserPkg.getClass(), Boolean.TYPE);