Reverse Engineering an Android application


Introduction:

The Android compiler suite compiles the developer's Java files into class files, and then the class files are converted into dex files. Dex files are bytecode for the DalvikVM which is a non-standard JVM that runs on Android applications. The XML files are converted into a binary format that is optimized to create small files. The dex files, binary XML files, and other resources, which are required to run an application, are packaged into an Android package file. These files have the .apk extension, but they are just ZIP files. Once the APK package is generated, it is signed with a developer's key and uploaded onto the Androidmarket via Google's website from where the user can download these APK files and install them on the Android device.

Requirements:

  • Tool to unpack the .apk file : 7zip
  • Tool to convert the .dex to a .jar file : dex2jar
  • GUI tool for Java decompilation : JD-GUI
  • The android apk file.

Detailed Steps:

Step 1: You can get the apk file matching your application to be reversed from the location /data/app/<application-name>. If you want, you can even use the tool AppSender from GooglePlay on your device which allows you to export any apk mapped to your application on your device as per your choice.
Step 2: Extract the apk file using 7zip to view the contents of the .apk file. The .dex and the .xml files that were discussed earlier in the article are shown in below figure.




Step 3: The next step will render a better view of the code using the 'dex2jar' tool. A dex2jar tool kit converts the Dalvik executable .dex files into Java .class files.

The 'classes.dex' file from our application is dropped into the dex2jar's directory and converted using the command, dex2jar.bat classes.dex.

This creates the 'classes.dex.dex2jar.jar' file in the same directory as shown in below figure.




Step 4: To view the readable format of the class files, we use the tool, JD-GUI. Open the 'classes.dex.dex2jar.jar' file using JD-GUI.


This depicts a systematic view of the complete source code of the Android application.

Step 5: After obtaining the complete source of the application, you can perform the actual analysis of the source and check whether something is amiss.


References and Good Reads:

Komentar

Posting Komentar

Postingan populer dari blog ini

All India BSNL Nodal officer Contact Information..!!!

Gambar
Hi All,   BSNL is very good Telecom service provider but sometime its customer care service are very poor and we are unable to resolve our issue satisfactory. As customer care sometime unable to resolve our important isuue. So in this case you should not loose hope and contact the Circle Nodal officer to resolve the issue. So here I have decided to provide All India BSNL Circle Nodal officer Contact Information which will help you to solve your issue on high priority. Click here to download All India BSNL Nodal officer Contact Information.
Baca selengkapnya

Video & Photo Gallery: Unboxing ORICO D10000 Scharge Polymer Power Bank

Gambar
You can buy ORICO D10000 Scharge Polymer Power Bank from Amazon .com for only $28.99 . Meet ORICO D10000 Scharge Polymer Power Bank The power bank has a micro USB charge input port, and two USB charge output port, 4 small blue LED lights for power status and a on and off power button. The charge speed of this power bank is good and faster than the market average and you can do number of charges before the power bank needing a recharge. The design is compact and smart. It has Nice status LED's that tell you the level of charge. The included cable was actually really nice. It comes with 18 months warranty. Newly updated polymer A + cell Safer than before. Polymer A + cell is better than other cells in terms of safety and size. Newly updated polymer A + cell Safer than before Polymer A + cell is better than other cells in terms of safety and size. Scharge smart precision chip Intelligent delivery of current. Adopts Scharge smart precision chip which enables it to automatically dete...
Baca selengkapnya

How to Automatically Shrink url of ADF.ly || Earn Money By ADF.ly

Gambar
Every one want to  earn online  as a hobby to use its time in a good way.There are too much sources available online which allows you to earn money. Facebook,twitter, pinterest  are social media which you used in daily routine source of  earning .Blogging, Google adsense  and  bubblews  are others powerful source of earning. If you think tough these job and in search of easy job to earn handsome amount of money,then this post is for you. In this post you will learn   how to earn money by shrinking URL's .   Why need to shirink URL's: It’s not easy to remember long URLs. Writing long URLs give a bad look in a text so we shrink URLs to have a good look,.Best advantage is that its easy to remember  short URL's. ADF.ly is best URL Shirinking site: Also Read:  Top 5 websites to Earn money by URL shortening There are many sites which allows you to shrink URL's.But all are not work as good as AD...
Baca selengkapnya