Questions tagged [java]
Java is an object-oriented language and runtime environment (JRE). Java programs are platform independent, because they are compiled to bytecode and their execution is handled by a Virtual Machine called the Java VM or JVM.
186 questions
0
votes
0
answers
81
views
How to retrieve specific instructions from an app's source code
I decompiled the code of an Android app. I'd like to find the portion of code that forces the user to update when a new version is detected. This is, however, complicated due to the significant amount ...
- 101
1
vote
0
answers
78
views
Reconstructing Source Code for a scratch-built GIS system
I have a new client who wants to move their GIS platform support to a new vendor. The only problem is the outgoing vendor of 15 years does not want to release the source code. My client made a ...
- 11
0
votes
2
answers
157
views
Minecraft EXE client
im quite new in this theme and im looking for a way how to extract .jar file from exe file ( upd. its graalvm native image ). If i open this exe as archive (7zip) i can see only .rdata and others ( ...
- 1
1
vote
2
answers
144
views
How to find what are all the third party apps used in an android app manually by decompiling an apk
How to find all the Third Party Libraries (TPLs) used in an android app after de-compiling apk using jadx? I have looked at this answer but this is too vague.
I can use tools such as Libradar etc. but ...
- 13
0
votes
0
answers
103
views
Make a reverse engineering for dead app
Hi,there is an app (Voip Recorder & Screen Recorder)the developer stopped updating the app from 3 years, and it's the only app in the world could record the screen with internal sound likes ...
1
vote
1
answer
574
views
Convert string to byte array in frida js script
I am having an issue with a JavaScript script to be executed in Frida. In this case, I am intercepting an input from a function where I receive an array of bytes. I need to convert this array to a ...
- 11
1
vote
0
answers
184
views
Frida: how to hook a synthetic class
When reverse engineering an APK I came across a class that was marked synthetic.
I have used JADX decompiler. The simplified result I got was:
package com;
public final class zz6 extends B implements ...
1
vote
1
answer
643
views
Frida Android how to change value of array passed to method
Let's assume we have a such code snippet:
public class Test {
public void testArrayValue() {
Object[] objects = new Object[1];
fillObject(objects);
Log.d("test", (String)...
- 13
1
vote
1
answer
321
views
Removing Ghidra auto-generated labels and create function. Overlapping namespace error
I am attempting to write a script to parse a function table containing structs that look like this:
struct func_table_entry {
void (* func)(void *);
byte unknown1;
byte unknown2;
byte ...
- 11
2
votes
0
answers
228
views
APK / Decrypting [closed]
I'm new to Reverse Engineering, so I apologize if something is wrong.
There is a free program that requires a license key, which can no longer be bought and obtained. I'm trying to write a KeyGen or ...
- 21
3
votes
0
answers
110
views
Java Byte Code Debugger
I'm trying to reverse a highly obfuscated program written in java. None of the deobfuscators seem to work so I have been poking at it in eclipse. I can attach to a running process and have figured ...
- 131
3
votes
0
answers
277
views
How do I log a string in smali without its obfuscated function?
I'm reversing engineering an app and after analyzing with man-in-the-middle, I find that it obfuscates its messages to the server so it looks like a gibberish.
String stc = ("msg=" + ...
2
votes
1
answer
273
views
Automatic deobfuscation of Java class/method/parameter names with access to old non obfuscated sources
I am currently trying to de-obfuscate a Java program (i.e. find each class name and namespace, each method name and each method parameter name).
To do so, I started by using Enigma (the fork from ...
- 123
1
vote
1
answer
240
views
How to set a breakpoint in android's openssl library in running android application?
I'm debugging an obfuscated android application. I use Android Studio's debugger. I attach it remotely to my physical device via adb. I can set a breakpoint in the app smali code, but when I try to ...
- 113
1
vote
0
answers
77
views
Mod Coder Pack for minecraft 1.8.8 failed to decompile
I tried to decompile minecraft 1.8.8 using MCP918 and I have an error that I cannot fix.
Here are the logs:
https://zerobin.net/?07c9671c16bc4011#g6co8FZc8RJkkQiPb6pu65HixcEORkWZGN8qHPXkHew=
Some ...
- 11
1
vote
1
answer
113
views
How to utilize `FillOutStructureCmd`?
Basically I'm extending the CreateStructure.java plugin so it iterates all functions and tries to automatically create structures on all variables.
It looks something like this:
public class ...
- 505
0
votes
1
answer
663
views
Decompile obfuscated jar file
Tried java-deobfuscator and other things, detect said it was allatori protected so tried the relevant transformers but to no avail.
Please can someone help, I'm happy to tip for your help :)
https://...
0
votes
1
answer
375
views
SQLite access from Ghidra script
I would like to access an SQLite database from within a Java Ghidra script. However, if I include the line import java.sql.*; in the script, Ghidra gives the error > Unable to locate script class:. ...
- 101
5
votes
0
answers
612
views
Patching Jar File (2022)
Currently reversing a .jar program recreationally, and I understand the workflow proposed here:
https://www.netspi.com/blog/technical/thick-application-penetration-testing/patching-java-executables-...
- 51
0
votes
1
answer
895
views
Ghidra: Iterating over function's codeUnits returns only 1st instruction
public void run() throws Exception {
var cp = currentProgram;
var nsSymbols = ghidra.app.util.NamespaceUtils.getSymbols("myNameSpace", cp);
var glNS = nsSymbols.get(0)...
- 141
1
vote
1
answer
151
views
Java Malware Dollar Sign
I am analyzing a mobile malware sample and got a trouble. When i put sample in JADX, i see some dollar sign. I mean like this;
What does these dollar signs means?
- 11
0
votes
0
answers
338
views
Checksum verification of an apk does not the same as my java program
I'm from the sysadmin side of the IT and have not much experience in programing.
I have an app that lets me screen share Android apps on my car's display.
Sadly there is a whitelist baked into the app,...
-1
votes
1
answer
193
views
what do these assembly code doing?
I tried to reverse engineer an apk app, and it was loading a native code. I have observed that the app was using the native code like this
public static String v = sUQWWyTBEs().toString().substring(32,...
- 309
0
votes
0
answers
167
views
How do I decode or decompile this class It seems codes are encrypted?
I've used JD-Gui, Luyten and other couple of Java Decompilers but it's not working what is the problem in here? Thanks! It's A Mod (Minecraft) and I'm porting into different versions.
Code:
public ...
1
vote
1
answer
271
views
Java Help Understanding RSA Encrypt/Decrypt file and SD card
I was directed this way from the main superuser site:
I have zero experience with Java or Android apps (I have coding experience in C) and tried reverse engineering a [now defunct/unsupported] app ...
- 11