android
-
Read more: Trend Micro CTF 2015 – Offensive 200
Note: For this challenge, we need install some things into our Android 5.1 device with Genymotion.For example, an ARM Translator.https://github.com/m9rco/Genymotion_ARM_Translation Download APK: https://lautarovculic.com/my_files/VirusClicker.apk Install the apk with adb adb install -r VirusClicker.apk And decompile with apktool apktool d VirusClicker.apk We can notice that the app isn’t responding. So I need install this app into an Android API29Let’s inspect the source code with jadx (GUI version)We have the SplashActivity, MainActivity, and…
-
Read more: Cyber Security Challenge 2015 – Reverse That App & Nviso Vault
Reverse That App Description: We have intercepted a malicious Android binary, and we need your help analyzing the application! Reports from the wild say that this piece of malware is sending text messages to a premium number, resulting in a huge phone bill for the victims! This needs to stop… Can you identify the mobile…
-
Read more: 0CTF 2015 Quals CTF – Vezel
DescriptionEvermars says he is good at repackaging Android applications. For this challenge, we need install some things into our Android 5.1 device with Genymotion.For example, an ARM Translator.https://github.com/m9rco/Genymotion_ARM_Translation For download the APKhttps://lautarovculic.com/my_files/vezel.apk Install it with adb adb install -r vezel.apk We can see a text edit and an button.Let’s decompile the apk with apktool apktool d vezel.apk The package name is com.ctf.vezel Let’s inspect the source code with jadx.We just…
-
Read more: 0CTF 2015 Quals CTF – Simpleapk
DescriptionThis is a simple apk, Could you find the flag? For this challenge, we need install some things into our Android 5.1 device with Genymotion.For example, an ARM Translator.https://github.com/m9rco/Genymotion_ARM_Translation For download the APKhttps://lautarovculic.com/my_files/simple.apk Install it with adb adb install -r simple.apk We can see a text edit and an button.Let’s decompile the apk with apktool apktool d simple.apk The package name is easyre.sjl.gossip.easyre Let’s inspect the source code with jadx.There…
-
Read more: TinyCTF 2014 – Oh! What does this button do?
Note: For this challenge, we need install some things into our Android 5.1 device with Genymotion.For example, an ARM Translator.https://github.com/m9rco/Genymotion_ARM_Translation Download APK: https://lautarovculic.com/my_files/rev200.zip When download the .zip file, we can extract this with 7z x rev200.zip The rev200 file is another zip file rev200: Zip archive data, at least v2.0 to extract, compression method=deflate So, what is an apk? We can look this…
-
Read more: Sharif University Quals CTF 2014 – Commercial Application
Category: CryptoDescription: Flag is a serial number. Note: For this challenge, we need install some things into our Android 5.1 device with Genymotion.For example, an ARM Translator.https://github.com/m9rco/Genymotion_ARM_Translation Download APK: https://lautarovculic.com/my_files/suCTF.apk Install the apk with adb adb install -r suCTF.apk Decompile this with apktool apktool d suCTF.apk And now we can inspect the source code with jadxBut, first at all, let’s take a look to the…
-
Read more: Pico CTF 2014 – Droid App
Category: ForensicsDescription: An Android application was released for the toaster bots, but it seems like this one is some sort of debug version. Can you discover the presence of any debug information being stored, so we can plug this? You can download the apk here. Note: For this challenge, we need install some things into…
-
Read more: AHE16: Android Hacking Events 2017 (Strange Calculator)
For this challenge, we need install some things into our Android 5.1 device with Genymotion.For example, an ARM Translator.https://github.com/m9rco/Genymotion_ARM_Translation For download the APKhttps://team-sik.org/wp-content/uploads/2016/06/strangecalculator.apk_.zip We install the apk with adb install -r strangecalculator.apk And then, decompile this with apktool apktool d strangecalculator.apk Let’s inspect the source code with jadx (GUI Version)We have 2 activities, MainActivity and Parser activity. Let’s talk about MainActivity (Code can be shorted for the writeup) package…
-
Read more: AHE17: Android Hacking Events 2017 (Why Should I Pay?)
For this challenge, probably we need install some things into our Android 5.1 device with Genymotion.For example, an ARM Translator.https://github.com/m9rco/Genymotion_ARM_Translation For download the APKhttps://team-sik.org/wp-content/uploads/2017/06/WhyShouldIPay.apk_.zip Install the apk with adb adb install -r WhyShouldIPay.apk And decompile the apk with apktool Load the apk to jadx-gui for see the source codeWe can see in the first activity that we have the VERIFY button, that give us an error.And the PREMIUM CONTENT button, that show us…
-
Read more: AHE17: Android Hacking Events 2017 (You Can Hide – But You Cannot Run)
For this challenge, probably we need install some things into our Android 5.1 device with Genymotion.For example, an ARM Translator.https://github.com/m9rco/Genymotion_ARM_Translation For download the APKhttps://team-sik.org/wp-content/uploads/2017/06/YouCanHideButYouCannotRun.apk_.zip Use apktool for decompile the .apk file apktool d YouCanHideButYouCannotRun.apk And install the .apk with adb adb install -r YouCanHideButYouCannotRun.apk Launching the app we can see that we have a text that talk about encryption and a button. That say Start to Running if we press it. Let’s load the .apk to jadx for…