I used apk tool to decompile and recompile uber to make some modifications to it. The problem that I am having is maps stopped working. I am assuming this is due to the maps api key being locked to the apps signature and when i recompile I select create new signature because otherwise the package wont install and android complains its corrupt.
So is their anyway to modify the uber apk and still have the maps working?
Related
I'm trying to decompile the android gingerbred keyboard so I can make a custom layout. I used apktool to decompile and recompile it, and got no errors. When I tried to install it onto my phone the apk manager app simply said "application not installed" I tried signing it with Android Commander, and no dice. How can I get a recompiled app from apktool to install successfully on my phone?
System apps must not be (re-)signed!
Assuming you're talking about a deodexed firmware:
Just push it back via adb after you modified it. Don't forget to check for the right owner and permission settings. Clear caches and reboot the device and it should work
Hi, i am trying to modify the classes.dex file in an apk but it is giving me problems.
if i decompile the apk and recompile it after modifying the app installs but crashes after one minute. also some functionality in the app is also lost.but when i binary edited the classes.dex file and replaced it in the apk ( i have used different methods for replacing the .dex such as direct replacing in archive and replacing in the decompiled archive) the app doesn't install and the phone or emulator reboots. i have done this with other apps and they are working fine after editing so i couldn't understand what's going wrong. please help
You should use a decompiler and achive to the java code. Than you can easily modify and recompile the app. You will need an Linux virtual machine to do this.
In linux, after you found you .apk file use this to decompile it to a .jar file. http://siis.cse.psu.edu/ded/installation.html. After that, you can use http://java.decompiler.free.fr/?q=jdgui to browse the code. With this method you will need a Linux machine and would give you the best result.
If you want to use windows, follow this tutorial http://androidorigin.blogspot.com/2011/02/dex-format-to-jar-format.html but I warn you, its likely to be faulty.
Hope this will help you.
thanks for replying
i used apktool to decompile and modify the smali code. i had even tried converting the smali code to java but no help.the problem is that the recompiled app runs only for one minute and then crashes without any error message even logcat log is not of help it just says that the process xxx has died but no err msg or exception is logged. if i replace the classes.dex with the patched one and then re-sign it it does not install and crashes the emulator but when i again decompile and then recompile the modified file it return to the same old problem of crashing. do you know how apktool packages the compiled files?
You should follow one of the tutorials posted in my last post. I did not used apktool and I don't know how it works.c the method with that decompiler will work. If you want your application signed just sign it as a normal one.
this particular apk loses about 20-30 kb in filesize on decompiling and then recompiling with apktool while this is not seen in any other apk. maybe this means that this file has some overlay data that goes missing on modifying and creats problems.7-zip is unable to show any extra data in the file.does anyone know how to add and extract overlay data on/from an apk?
I am trying to sell my theme on Google Play, but it installs in mnt/asec, which crashes it. I created a apk as an installer which is downloaded from the google play store. Once it is downloaded it, the app will show up in the homescreen. The user has to open it, and it will give the option to install the actual theme i put inside.
APK (Installer)
assets/android_secure_cache.apk
android_secure_cache (is my actual theme) which should install in system/app.
I have signed both the installer and theme with APK Signer, and they both have the same version with package name as well.
and my error when installing is this: an existing package by the same name with a conflicting signature is already installed
I just added a new version number in the android manifest.
is anybody out there?
Is there a way you can add apk package names to a file so when a user tries to install any of them, it fails with an error message that the app couldn't be installed?
Here is a patch for Android 10 but I don't know how to feed an external file eg. system/etc/blocked.xml to it so only those apps are blocked or fail to install but all other apps can still install normally.
Is there another way too to add the package names to block from being installed to the Android code itself so there isn't a system/etc/*.xml file they can see and easily delete.
Patch
https://pastebin.com/L892ntMP
Hi ,
Your pastebin link is not working can you please share the patch or the link again
dewettie said:
Is there a way you can add apk package names to a file so when a user tries to install any of them, it fails with an error message that the app couldn't be installed?
Here is a patch for Android 10 but I don't know how to feed an external file eg. system/etc/blocked.xml to it so only those apps are blocked or fail to install but all other apps can still install normally.
Is there another way too to add the package names to block from being installed to the Android code itself so there isn't a system/etc/*.xml file they can see and easily delete.
Patch
https://pastebin.com/L892ntMP
Click to expand...
Click to collapse
Can you please share the patch or the link again
If I remember this correctly, the signature of apk to be installed has to be the same as before if apk has been removed keeping the data. Now, rewrite the signature of the apk and install it and then uninstall keeping the data. That might make it harder to install that app in future...
Hi every1,
Important threads:
- https://www.thecobraden.com/posts/unblocking_firebase_ids/
Explanation:
I've been messing, for some time now, with android tampering/reverse engineering. But, there is a problem that I can't seem to overcome, neither find any solution for it on any foruns, that is "Signing In with Google" on the app after modifying it (decompiling/recompiling).
The process I follow is as simple as:
Pulling the APK file from my android using adb;
Opening the APK file using jadx-gui to see the contents and search for what I want to change;
Decompiling the APK using APKEasyTool and searching for the .smali file I previously wanted to change;
Changing the file and recompiling the APK with APKEasyTool;
(optional) In case the APK file is splitted, installing it on my device using SAI.
Results:
After this process the app works fine, but as mentioned, I can't no longer sign in on the app with Google. As far as I know, when you click the sign-in button, an HTTP request is made to Google Servers, asking for a token, than can later be used to sign-in on the app (this is made by integrating Firebase in the android project). And, it's in this process that it fails, because on this request it is also sent the SHA-1 fingerprint as a Request Header, which was changed when signing the APK file.
Using a tool like MITMProxy I was able to repeat this request with the APK original SHA-1 (retrieved with keytool -printcert -jarfile <original.apk>), but this requires moving traffic through, for instance, my computer - as a proxy server. (And for some reason it didn't always worked).
Question:
Does anyone have any thoughts on this, or have successfully been able to decompile/recompile an apk and still be able to use Google Sign In option? How can I modify an apk file and still be able to sign in on it with my Google account?
i mean if your device is rooter, you can login in origin apk and use lucky patcher backup data ,install modified apk then do a restore data in to app
Play Services will not allow it unless the apk is signed by Google. The solution is to set the public key for the modified apk and patch Android Framework's signature check to make the system think it's valid.
The yellow smiley face app mentioned above does this, as well as microg.