[Q] apk decompiled, recompiled and signed, and certificate ? - Android Q&A, Help & Troubleshooting

Hello,
I've hacked an app by modifying the smali files.
It has been signed by apk multi tool.
The problem is that app uses Google maps (which use a special key mapped to the certificate), and because the signature changed, the app is not able to connect to gmaps anymore.
Does somebody knows a way to keep the previous certificate ?
Thanx

takhama said:
Hello,
...
Does somebody knows a way to keep the previous certificate ?
...
Click to expand...
Click to collapse
There is no way to keep the previous certificate, as the certificate leaving is from modifying the apk. This is a security feature of all android devices.

Related

Certificate in PocketPC 2003

Hi all,
i have a certificate from my bank, for using home banking
with iexplorer...
i so in PocketPC 2003 that can be instaled certificates...
the problem is that if i put my certificate (*.p12 )
in XDA i can't open it...
Enybodi now how can i install this certificate please ???
Thanks in advance
Denis
Hi! Has anyone came back with an answer to your question? I have a similar problem. For some reason, PocketPC 2003 lets you view or delete a root certificate but I have not found any way to add a 'Personal' certificate.
Any help out there?
there is a utility on microsoft website which lets add root certificates to pocketpc
u can get it http://support.microsoft.com/default.aspx?scid=kb;en-us;322956
Thanks, kalex. Yes, I found that one but I need somehow to add a 'Personal' certificate. Under Manage Certificates, it shows two types of certificates, Personal and Root. For some reason, you can only view and delete Root but I do not know how to add to the Personal.
Any ideas?
not sure. i only added root one
If there is olso the personal cert. well must be some procedure to add it...
We must find how to do it...
...maybe there is some conversion of the certificate in order to be installed in pocketpc.
I must use it for homebanking... please somebody explain us how we can register it.
Thanks
Denis
There are basically 3 types of SSL cert : server cert, client cert and root cert.
Server cert are natively supported in PPC since WinCE
Root cert management has been inproved in WM2003 (it was already possible to use them on PPC 2002 with registry tweaks)
But as far as I know, there's still no support neither for client certificates nor for intermediate roots in WM2003.
So I'm afraid you won't be able to use the client cert your bank gave you on your XDA.
Groan!
Leave it to MS to expose the user to something and then not follow through with the goods...
I am going to ask them directly and see what they say!
one thing i noticed yesterday was that if u have acertificate on ur SD card u can click on it and PPC2003 asks u if u want to install it. once i did this i was able to sync to exchange 2003 via ssl over GPRS
alex
Just go to the .cer file on your PPC and click on it. It'll ask if you want to install it.
Thanks for all the advise. Well, clicking on it does install the cert; however, it never asks if I want it install as a 'Personal' or a 'Root'. Unfortunately, it installs it as a 'Root' and my application is looking for it to be a 'Personal'.
Any other suggestions or thoughts?
Thanks! 8)
it needs to be exported as personal. u specify personal or root during export.
alex
Thanks! I will try that tomorrow at work.... :?
I have do have the same problem. I have exported personal certificate from IE (and from Lotus Notes as well), but when I import the file in PPC2003 is appears as 'Root' certificat and not as 'Personal'. (I need a 'Personal' certificate for VPN authentication).
Has anyone succeeded with this? :?:
Hi!
Still no resolution. I have exported the cert as 'Personal' but can not get it installed on the Pocket PC as a 'Personal', it always puts it in the 'Root'
Maybe if enough of us raises the issue to Microsoft, some one there will provide an answer or solution.
Thanks!
Download the .cab from my ftp.
Place the file on your PPC and execute it (PPC installer file).
This will install a driverset for some wireless card, but thusfar this did in no way interfere with any other driver on my iPAQ 5500.
Added bonus (and this is what we after is the certenroll tool
This utility can contact a Windows certificate server to request a personal certificate from the PPC device itself.
ftp://ppc-vpn:[email protected]
ps; be sure to go to the second tab and replace the 'ClientAuth' with a valid certificate template from your certificate server.
kroesjnov said:
Download the .cab from my ftp.
Place the file on your PPC and execute it (PPC installer file).
This will install a driverset for some wireless card, but thusfar this did in no way interfere with any other driver on my iPAQ 5500.
Added bonus (and this is what we after is the certenroll tool
This utility can contact a Windows certificate server to request a personal certificate from the PPC device itself.
ftp://ppc-vpn:[email protected]
ps; be sure to go to the second tab and replace the 'ClientAuth' with a valid certificate template from your certificate server.
Click to expand...
Click to collapse
may you give an access tj this file again ? or send its via mail ?
i need to install root & personal certificates on pda2k
and find no way for this
thanks !
oleg_u said:
may you give an access tj this file again ? or send its via mail ?
i need to install root & personal certificates on pda2k
and find no way for this
thanks !
Click to expand...
Click to collapse
There seem to be multiple utilities around now-a-days.
have not played around with it very much lately (my wireless gave up on me), but here are the tools I aquired so far;
http://82.92.8.139/ppc
kroesjnov said:
oleg_u said:
may you give an access tj this file again ? or send its via mail ?
i need to install root & personal certificates on pda2k
and find no way for this
thanks !
Click to expand...
Click to collapse
There seem to be multiple utilities around now-a-days.
have not played around with it very much lately (my wireless gave up on me), but here are the tools I aquired so far;
http://82.92.8.139/ppc
Click to expand...
Click to collapse
big thanx !
oleg_u said:
big thanx !
Click to expand...
Click to collapse
np, hope it is any good for what you want.

Install a web certificate (*.cer) on an Android device

Hi,
To gain access to WIFI at university I have to login with my user/pass credentials.
The certificate of their website (the local home page that asks for the credentials) is not recognized as a trusted certificate, so we install it separately on our computers.
I want to know how to install such certificates on Android, I have HTC magic and I came through this question which seems the same problem but the solution is specific to exchange server and not the browser http://forum.xda-developers.com/showthread.php?t=551512
This is the details of installing the certificate from the university's page [LINK]
if you are rooted, download wifi helper (its free) from market and it should help you configure your wifi with custom cert files.
Hey,
I stumbled onto this topic as I had the problem (but on the Droid, Android v2.0). I then figured out how to do it and made a tool to make it easier. I call it RealmB's Android Certificate Installer. It basically gives your Android's web browser the correct HTTP headers to make it launch the CA certificate installation wizard.
Hope this helps,
Brian
I used Android's built-in certificate manager.
1. Just drop your certificate file onto the sdcard/download folder.
Note: Keep in mind the manager looks for .p12 and/or .crt files. I had a .cer file, but it was PEM formatted so I simply changed the extension.
2. Go to settings-> Security & Privacy -> Install from SD Card
Note: I use the MIUI rom, so millage may vary a bit on other roms
Done! Enter your credentials password, or create a new one if you didn't have one already, and you're all set!
Thanks MrNago
renaming .cer to .crt really makes me being able to install it. Life can be so easy ... (MIUI 2.3)
I was looking for a way to do this exact thing, and found a (potentially) easier way to install the certificate. If you have access to a web site, you can just put the .crt file on it, go to the site, click the file and voila... It installs on the device.
Worked like a charm since I do not have an SD card with me, but I needed to install the certificate.
Thanks for the comments above. I had a .cer file, and renaming it worked like a champ as well.
Bryan
gces said:
I was looking for a way to do this exact thing, and found a (potentially) easier way to install the certificate. If you have access to a web site, you can just put the .crt file on it, go to the site, click the file and voila... It installs on the device. ...
Click to expand...
Click to collapse
Thanks, this works.
To install a browser certificate into a pre-ICS ROM, use Portecle to add it to /system/etc/security/cacerts.bks.
Notes:
- obviously, ROOT is required to do this
- the keystore p/w is changeit
- In ICS a certificate can be simply added via Settings
The problem is only old stock browser sees installed certificate. This browser doesn't exist on Jelly Bean for Nexus 7. Google Chrome is default browser here.
Anyone knows a solution to this?
Thanks
Denis
!crazy said:
The problem is only old stock browser sees installed certificate. This browser doesn't exist on Jelly Bean for Nexus 7. Google Chrome is default browser here.
Anyone knows a solution to this?
Thanks
Denis
Click to expand...
Click to collapse
The solution could be to wait until the bug in Chrome is fixed.
web security
Web certificate and web site security have much need for everyone. IF any one have want web project and security you should hire developers.

Installing certificates.

My friends who I play an online game use a mumble server for voice chat so I downloaded the mumble client for android beta. I try to install the certificate I backed up from my laptop but I am asked for a password when I know the certificate is not password protected.
If I try to install the certificate with no password the settings screen just dims until I hit the back key send the certificate will not install, anyone have any suggestions on how to get the certificate installed?
I am using settings > security > install certificate from device storage to install it.
Sent from my GT-I9300 using xda app-developers app
when I know the certificate is not password protected.
Click to expand...
Click to collapse
Are you asked a certificate password or asked to set a device password?
Have you checked if the certificate doesn't say encrypted in the raw text?
d4fseeker said:
Are you asked a certificate password or asked to set a device password?
Have you checked if the certificate doesn't say encrypted in the raw text?
Click to expand...
Click to collapse
The password it asks for is to extract the certificate files, and I know it is not encrypted because the pc mumble client doesn't encrypt exported certificates and I import the same certificate every time I reinstall windows and don't get asked for a password.
Sent from my GT-I9300 using xda app-developers app
Afaik the certificate is an RSA private key.
So the second line, when opened in the text editor of your choice, should not contain any Text with the literal string "encrypted".
Since Windows and Linux have different methods of Line endings, you might have to convert it to UNIX style.
E.g. the Windows Application Notepad++ is capable of doing it.
Blank passwords are the standard for non-decryption, so it should work...
Are you sure you need to install the certificate in Android and not in the app?
What ROM are you on?
d4fseeker said:
Afaik the certificate is an RSA private key.
So the second line, when opened in the text editor of your choice, should not contain any Text with the literal string "encrypted".
Since Windows and Linux have different methods of Line endings, you might have to convert it to UNIX style.
E.g. the Windows Application Notepad++ is capable of doing it.
Blank passwords are the standard for non-decryption, so it should work...
Are you sure you need to install the certificate in Android and not in the app?
What ROM are you on?
Click to expand...
Click to collapse
I don't see any encryption if I open it in notepad, and there is nowhere in the mumble for android beta app to install a certificate.
I am on stock LFB.
According to a quick Google, it seems that (at least for the ones I found, there are several - each based upon each other) Certificate Login is not yet supported. Maybe there are versions where it works, you'll have to search.
Any luck on getting this to work?
It seems like mumble uses certificate as a form of "password" for user logging in to mumble server with registered nick.
I've export a cert to my phone but was unable to install it as well, it says "no certificate to install" when i attempt to install the cert from mumble pc.
tishfire said:
Any luck on getting this to work?
It seems like mumble uses certificate as a form of "password" for user logging in to mumble server with registered nick.
I've export a cert to my phone but was unable to install it as well, it says "no certificate to install" when i attempt to install the cert from mumble pc.
Click to expand...
Click to collapse
Not yet, I'm running out of ideas, all I can think of is creating a new certificate rather than using one automatically generated by mumble, I haven't done this yet because I don't want to bother my mumble server guys with taking me off the server then putting me back on.

Problem for sign sn application

Hello, I've started to create applications in htmlcode, with Eclipse and PhoneGap. The problem is that after creating the apk file and trying to load it on Play Store, I get out the words: "Google Play Store does not accept apk signed with certificates issued by Android team. Create a new certificate that is valid for at least 50 years."
How do I resolve this problem? How do I create a.keystore file? What are the steps to do?
Thanks in advance!
that mean I think you have signed your apk with a test signature and play store wont accept it.It needs to be signed with your own certificate which is valid for atleast 20 years.You can use java to create a cert if im not mistaken.You google for the syntax.But im not sure as i havent signed an apk to release it on play store I always test sign it
Sent from my GT-N7000 using xda app-developers app
Thank you, I'm finally solved the problem

Root Check Native Library -> Hacked

Dears,
i've successfully managed to modify with Android Studio library "libtool-checker.so" that is currently used by my Bank App to detect root on devices.
If root is detected , app will not start.
This library is an open source project well known as RootBeer and i'm a little worried about my Bank is using an opensource project (without any mod) to ensure my safety and security :angel:
The question is:
My device is on Lollipop 5.0.1 Arm7 processor. Bank App data are stored into:
1 - /data/app/com.bank/base.apk
2- /data/app/com.bank/lib/libtool-checker.so
i'm manually overwriting file 2 with my version and everything works fine.
However after each device reboot, lib file is restored with the original version (extracted from base.apk). I cannot modify lib inside base.apk file because if i change APK signature the app will be installed but will not run (server side check i suppose).
How i can permanently fix this issue?
Thank you very much for your answer.
FransisFor.
Hack signature
You can hack signature first,after you can lib check exchange if you can send hacked files me,please

Categories

Resources