Crack any android app

Crack any android app

This tutorial for how to crack Android apps is one of my more technical posts. If you aren’t a developer you might want to skip this one. 🙂 I’m assuming some basic knowledge of UN*X, Java and Android.

Why crack an app? рџ”—

Sometimes I like to check if online services I use really are secure. I’ve presented quite a few cases to prove that they very often are not. Mostly I can use very simple techniques to check the security as there are so many basic security vulnerabilities out there. When it comes to apps I often use a HTTP proxy like Charles to take a look at the HTTP and HTTPS traffic. However, once in a while there are apps that use e.g. HTTP tunneling or certificate pinning. In those cases you need to go one step further to be able to listen to the network traffic.

Other reasons to decompile apps could be to recover lost source code, to inject language translations or even fix a bug. But hey, remember, don’t do anything you are not allowed to. Don’t break the law. This guide is just for educational purposes when you have legitimate reasons to do what you do.

Contents рџ”—

These are the topics that I’ll cover.

Online alternatives рџ”—

Very often you don’t have to get your hands too dirty getting the hands of a decompiled app. There are some good services out there that can provide you with most Android APKs, and then even some to decompile them.

Online APK archives рџ”—

To get hold of an APK you can typically just google the package name. There are quite a few sites where to download them from. Some are more frequently updated than others. Note that you can get hold of different versions and the APK for different architectual platforms.

A word of wisdom: Don’t download and run some random APK out there (at least do it in a sandboxed and/or emulated environment). There are quite a few sites that serves bogus or altered APKs. The app might look allright, but still have some malware injected. Don’t blindly trust the ones that I recommend either. If the APK is signed with the same key as an APK that you got from Play Store you should be able to trust its origin (though there have been cases of private keys in the wild (even repackaged APKs uploaded to the vendor’s own web site)).

Here’s a few you might want to try out:

Online decompiler рџ”—

The quickest and easiest way to decompile an APK is to just use an online service. You just upload the APK and get an archive with all the resources and decompiled files. javadecompilers.com is the one I have used, and I have been pretty happy with it.

As you might know, the APK file is really just a ZIP file, so you can typically just rename it to .zip and double click it or run unzip and you can start investigating the app. If it’s a hybrid app you might not have to decompile it at all to get access to everything. Actually, the Gator Watch app was a hybrid app and gave away everything with little effort.

Getting the tools рџ”—

Android — SDK, tools and emulators рџ”—

You need to have at least the Android tools and SDK, but for most people I would recommend to just install Android Studio and follow the instructions to set it up as normal (but skip stuff like the SDK for Android TV and other stuff that will slow down your download).

Apktool — disassembling and reassembling APKs рџ”—

Apktool can be installed manually, or if it’s available via your package manager you can just install it using a command like apt-get install apktool .

Getting the APK рџ”—

The first step of the reverse engineering is to get hold of the APK. I’ll use my own Android app Developer Tools as an example app. It’s open source and if you want you can get the source code and APKs from GitHub.

The command-line tool adb (Android Debug Bridge) is used for all communication with the device or emulator. You can find the tool in the Android’s installation folder platform-tools .

Note on App Bundles / multi-APK рџ”—

It’s increasingly common (and required for Play Store releases in the second half of 2021) that apps use Android App Bundles. This adds a layer of complexity when cracking apps.

When the app is an App Bundle you will in the above example see more than one APK file. Typically you will see base.apk (the common code), split_config.arm64_v8a.apk (config for the CPU architecture), split_config.xxxhdpi.apk (config for the screen resolution) and typically a split for the language and maybe some dynamic features.

You need copy all the APK files — either in separate adb pull commands or pull the whole app directory.

Decoding the APK рџ”—

The next step is to unzip and decompile the APK. Apktool does this for us.

Note on App Bundles / multi-APK рџ”—

If you are interested in the core code and not the resource files you only have to consider the base.apk files and not the rest. But note that you need to either decompile and compile them (or at least unzip them and remove the META-INF folder before zipping again) if you need to resign the app as shown in a later step.

Altering the app рџ”—

This is where the hard work starts. The code files are now fully readable, but the code is now in the smali format. You can think of smali as a sort of assembly language.

As an example we’ll first change the language string app_name to Hacker Tools .

Then we’ll change some hard coded text so that we have changed both resources and actual code.

Reading Java instead of smali рџ”—

There’s a way out if you rather want to read Java instead of smali. The excellent tool jadx provides both a command-line and GUI tool for converting dex to Java.

You can open the APK files directly in the the program and have all the code decompiled and converted. Reading Java is after all easier than reading the smali format. Just note that you cannot simply change the Java code and recompile it with jadx. You can always try to get a project up and running in Android Studio, but it will typically take some major effort as jadx seldom can fully decompile everything 100%.

Getting the app back together рџ”—

There are quite a few steps getting everything together. We need to rebuild the app, sign it, zipalign it, and then install it. If the properly signed app is still installed it needs to first be uninstalled as our signature violates the existing one.

The command-line tool zipalign is needed to align the contents of the APK for Android to be able to run it. You can find the tool in the Android’s installation folder build-tools/ .

Note on App Bundles / multi-APK рџ”—

If you have multiple APK files and you just signed the altered APK file with a new certificate you will need to sign every single APK file with jarsigner and then zipalign them.

Installing them will need the install-multiple option and all APK files as arguments:

A few addtional tips рџ”—

Reading smali рџ”—

It might take a little bit of getting used to, but reading smali isn’t all too bad. If you have any concrete problems you’ll find the answer with some googling. But a good tip is to create some small very simple Java classes yourself and check out what they look like in the smali format.

If you are having trouble navigating the smali code and understand the flow of an app you can use the following smali code. It will call Thread.dumpStack() which logs the current thread’s call stack.

If you need to know the value of a string — e.g. a parameter — you can use Log.d(String tag, String message) to log it to the system log.

Proguard рџ”—

Very often — but not in the case of my Developer Tools app — the code will be shrinked and obfuscated using ProGuard. This makes the code a lot harder do read and understand. There aren’t really any good ways around it, but doing the thread dump trick and taking your time to follow the code will eventually get you where you want to be.

Wrapping it up рџ”—

If you have followed along the guide you would see the app change from the version on the left to something like the one on the right. One of the reasons I wrote this guide was for my own sake to have something to easily copy and paste from when doing some reverse engineering myself, but I thought this might be useful one for others as well. 🙂

Источник

Best Sites To Download Cracked Apps For Android

There are a lot of websites available on the internet but they just fake their users by typing HACK & MOD In their title. But I Have Been searching the internet for 3 months regarding the same topic and I found out many websites And this website is just a miracle to every life. I highly recommend you visit this website if you are looking for paid/modded apps or games for free. So Why waiting checks out the Best Sites To Download Cracked Apps For Android.

These sites we are adding are highly active and genuine so you can expect regular updates in real-time. Which is really awesome to get cracked apps online.

There are lots of websites available over the internet to download cracked apps, premium apps, and many more. I am a blogger and I have a websites PremiumInfo you will get will Premium tricks like this for free.

Also Read:

Best Sites To Download Cracked Apps For Android 2020

Table Of Contents

We have gathered the best sites to download cracked apps for android. We are not responsible if you misuse the below provided site apps.

1. RevDL

RevDL is one of the top-rated site to download premium cracked apps for android. They have hosted the site with Blogspot and a Complete data server over a cloud hosting server. Where you can download the cracked apps without any issues directly by this site.

If the site is not working you can try to access the site with Any Free VPN available in the playstore. Because most of the site is blocked on a regular basis.

RevDL Website

2. Rexdl

We can find many sites to download apps, But while checking the current status of those sites rexdl came 1st with an updated version of apps. If you’re looking for some perfect site to download cracked apps.

Rexdl is also another best site to download cracked modded Android apps and games. Most of the sites provide modded android application without any chargers. Same way here is the site where you can download free android pro apps.

3. Apk Pure

Few best thing about this website are:-

1. Simple and catchy design.
2. QR code service for each and every application download.
3. Fast file release for updates.
4. A good secure line for download.
5. Less spam, Sorry correction, No spam at all.
6. A wide range of apps including old files ( Old apk’s of the application )
7. Simple and perfect application description.
8. Responding comment section.

Apk Pure

4. Apk4Free

This can also help students to obtain premium versions of Android applications. To mention only a few, practically a Google search can prove the piracy vulnerabilities of Android applications.

There might be many sites, But Apk4free has been there for a very long time as they update the apps in regular intervals. So you won’t have any issue in getting the latest updated application.

Apk4Free

5. iHackedit

iHackedIt.com is your best source for downloading Android Games, Apps, Hacks (Mods) for free. They stepped into Android cracking/hacking, they are also releasing iOS cracked/hacked apps, games since 2010. So you can also check this site to download cracked and modded apps.

iHackedit

6. Cracked Apk

This is one of the best sites where you can search for many of the current trending and easily downloadable online APK files for free of cost. So you need not spend or waste your money to buy/purchase or pay for any app that is provided there in the store.

Modded Apk

7. ACMARKET

ACMARKET has been one of best site with a greater user interface. We have been looking for sites with a great modded android application where we found this with repeated analysis. If you want to download cracked apk directly this site is better and best with an inbuilt application.

8. APKMB

APKmb™ Is Specially Designed For Sharing Every Apps & Games Android Fully Free. In This Site, You Can Direct Download All Type Android Mobile Apps, Games, Launcher Etc To Your Mobile Without Any Ads.

How To Download From APKMB:

Download From Upload.cc (Recommended)

1. Untick “Download with Add-ons” from 1st page.
2. Click on “Download“
3. You will be taken to the 2nd page
4. Click on “Download” from 2nd page
5. your files should start downloading.

9. GetApk

Amazing Features OF GetApk Market

• Simple to use, nothing complicated or in which you will any issue.
• Directly download apps you want to use, and keep it and you can install it later.
• A variety of categories are available in the Apk Market and can select the app as per your categories.
• The latest update will be sent to the app.
• Directly share the app with anyone without Bluetooth or any other third party app.

10. Apk Real

We have been constantly updating this list from time to time for providing a better-cracked site for downloading a modded application. Next to the list, we have added the Apkreal site. You can also check this site to download cracked apk without paying. It has a bigger fan page and ranking over google page.

11. On HAX

On HAX is the top best site to download cracked apps for android. It can be used to download any apk premium files. The site doesn’t charge any amount to download cracked application. It’s completely free to download. If you need more information about this site just visit the below Link.

12. Blackmart Alpha

Blackmart Alpha is a market alternative to the Google Play Store for tablets and smartphones with an Android operating system, from Blackmart you can download many applications, without the need to have an account and Google without the need for any kind of registration. Here you can download many apps like Mx player pro apk, Vivo Video Pro, Lucky patcher etc.

Key Features Of Blackmart

• All the applications and games on Blackmart Alpha can be download much quicker.
• All the applications are full version and they’re not trial versions.
• Never says the Blackmark Alpha, “your device doesn’t support this app.” Instead of you can Simply download and install those apps which may later not run.
• But the then Blackmart Alpha is a solution by providing multiple versions of the same application available, and you can upgrade your applications with own choices version.
• It supports Multilingual function show it uses worldwide.
• Download Premium version apk For free.
• Fast in downloading and installation of ‘application
• Save apps and game file on your Sd card.
• Not Required Sign up which means no need any Google account or email.
• It contains ton apps and chooses them browsing by category wise.
• Blackmart Alpha is Continuously updating, So you can enjoy the updated app.

Note:

Like with any product, an app requires the developers’ time, effort and money (cost) which he spends for the sake of making money (in some cases it is the primary or only source of livelihood for them).

If everyone starts using pirated apps, the developers will run out of business (most of them already make very little money) and you won’t find innovation going forward.

Most paid apps are already very cheap. It would be nice if you spend your time trying to do productive things and buy the apps that will help with your requirements, instead of hunting for stolen products on the internet (which can also potentially harm your device).

Downloading cracked apps is both illegal and unethical. All the effort a developer puts on an app-only pays off by the users buying it and that’s all. If you don’t buy it means no revenue for them.

So Above Mentioned sites are not owned by us. We just share for educational purpose. We are not responsible for any kind of risk happened from the above-mentioned site.

Источник