jadx
-
Read more: IceCTF 2015 – Husavik
Description: This handy Android App is supposed to display the flag, but it’s not working!Note: For this challenge, we need install some things into our Android 5.1 device with Genymotion.For example, an ARM Translator.https://github.com/m9rco/Genymotion_ARM_Translation Download APK: https://lautarovculic.com/my_files/husavik.apk Install the apk with adb adb install -r husavik.apk Then, decompile it with apktool apktool d husavik.apk We can see inspecting the source code with jadx (GUI version)That in…
-
Read more: PoliCTF 2015 – Crack Me If You Can
Description: John bets nobody can find the passphrase to login!Note: For this challenge, we need install some things into our Android 5.1 device with Genymotion.For example, an ARM Translator.https://github.com/m9rco/Genymotion_ARM_Translation Download APK: https://lautarovculic.com/my_files/crack-me-if-you-can.apk Install the apk with adb adb install -r crack-me-if-you-can.apk Then, decompile it with apktool apktool d crack-me-if-you-can.apk We can see the source code with jadx (GUI version).There are some activities so curious..In…
-
Read more: SECCON Quals CTF 2015 – Rock, Paper, Scissors
Description: Please win 1000 times in rock-paper-scissorsNote: For this challenge, we need install some things into our Android 5.1 device with Genymotion.For example, an ARM Translator.https://github.com/m9rco/Genymotion_ARM_Translation Download APK: https://lautarovculic.com/my_files/rps.apk Install the apk with adb adb install -r rps.apk Then, decompile it with apktool apktool d rps.apk We can see the game Rock, Paper and Scissors.If we win, +1.Draw keep points and loose all the pointsWe need…
-
Read more: Trend Micro CTF 2015 – Offensive 200
Note: For this challenge, we need install some things into our Android 5.1 device with Genymotion.For example, an ARM Translator.https://github.com/m9rco/Genymotion_ARM_Translation Download APK: https://lautarovculic.com/my_files/VirusClicker.apk Install the apk with adb adb install -r VirusClicker.apk And decompile with apktool apktool d VirusClicker.apk We can notice that the app isn’t responding. So I need install this app into an Android API29Let’s inspect the source code with jadx (GUI version)We have the SplashActivity, MainActivity, and…
-
Read more: Cyber Security Challenge 2015 – Reverse That App & Nviso Vault
Reverse That App Description: We have intercepted a malicious Android binary, and we need your help analyzing the application! Reports from the wild say that this piece of malware is sending text messages to a premium number, resulting in a huge phone bill for the victims! This needs to stop… Can you identify the mobile…
-
Read more: 0CTF 2015 Quals CTF – Vezel
DescriptionEvermars says he is good at repackaging Android applications. For this challenge, we need install some things into our Android 5.1 device with Genymotion.For example, an ARM Translator.https://github.com/m9rco/Genymotion_ARM_Translation For download the APKhttps://lautarovculic.com/my_files/vezel.apk Install it with adb adb install -r vezel.apk We can see a text edit and an button.Let’s decompile the apk with apktool apktool d vezel.apk The package name is com.ctf.vezel Let’s inspect the source code with jadx.We just…
-
Read more: TinyCTF 2014 – Oh! What does this button do?
Note: For this challenge, we need install some things into our Android 5.1 device with Genymotion.For example, an ARM Translator.https://github.com/m9rco/Genymotion_ARM_Translation Download APK: https://lautarovculic.com/my_files/rev200.zip When download the .zip file, we can extract this with 7z x rev200.zip The rev200 file is another zip file rev200: Zip archive data, at least v2.0 to extract, compression method=deflate So, what is an apk? We can look this…
-
Read more: Sharif University Quals CTF 2014 – Commercial Application
Category: CryptoDescription: Flag is a serial number. Note: For this challenge, we need install some things into our Android 5.1 device with Genymotion.For example, an ARM Translator.https://github.com/m9rco/Genymotion_ARM_Translation Download APK: https://lautarovculic.com/my_files/suCTF.apk Install the apk with adb adb install -r suCTF.apk Decompile this with apktool apktool d suCTF.apk And now we can inspect the source code with jadxBut, first at all, let’s take a look to the…
-
Read more: Pico CTF 2014 – Droid App
Category: ForensicsDescription: An Android application was released for the toaster bots, but it seems like this one is some sort of debug version. Can you discover the presence of any debug information being stored, so we can plug this? You can download the apk here. Note: For this challenge, we need install some things into…
-
Read more: AHE16: Android Hacking Events 2017 (Strange Calculator)
For this challenge, we need install some things into our Android 5.1 device with Genymotion.For example, an ARM Translator.https://github.com/m9rco/Genymotion_ARM_Translation For download the APKhttps://team-sik.org/wp-content/uploads/2016/06/strangecalculator.apk_.zip We install the apk with adb install -r strangecalculator.apk And then, decompile this with apktool apktool d strangecalculator.apk Let’s inspect the source code with jadx (GUI Version)We have 2 activities, MainActivity and Parser activity. Let’s talk about MainActivity (Code can be shorted for the writeup) package…