The best way is to just start practicing. I would say pick some simple apps on your (Android) phone and dig straight in. The great thing about Android applications is that often they generally decompile quite nice into human readable Java soo the barrier of entry can be quite low to start reversing. Grab a copy of JADX[1] - it will decompress and decompile the APK files. If you don't have an Android handset, use... - Source: Hacker News / 11 months ago
This may be overkill but you can use an oscilloscope to manually calculate the baudrate, i.e. Like this. It looks like it could be UART serial data, but this is a good resource to reference. Sometimes http is used as a means for communicating, and not necessarily directly to a browser see here. This is pretty common in embedded applications actually. You can try using dirbuster to see what hidden endpoints there... Source: 11 months ago
Jadx - skylot/jadx: Dex to Java decompiler (github.com) - Used for decompiling the apk - make the code readable. Source: 12 months ago
I realized when app is decompiled using JADX class names are recreated as shown in this screenshot of sample app. Source: about 1 year ago
Not sure. I started reverse engineering Java apps very early in my life — initially it was J2ME games. Decompilers of the time sucked but that didn't stop me from modding Gravity Defied :P I honestly don't know what's a good way of getting started on reverse engineering. There's a bunch of everything about Windows executables in particular, including "crackmes", but native machine code is a level up from JVM... - Source: Hacker News / about 1 year ago
A week ago I purchased a bluetooth device that takes some measurements. You require an Android or iOS application. The first thing the iOS app did was request permission for your location. Immediate fired up MITMproxy [1] running in transparent `--mode wireguard` and installed it's certificate in the iOS trust store. It was sending a whole bunch of data to China and HK. Since I don't have a jailbroken iPhone, it's... - Source: Hacker News / about 1 year ago
Jadx: View the generated Java code for an app. This tool tries to recreate Java code from the smali bytecode, but keep in mind that sometimes it may not work because Java -> Smali conversion is not fully backwards compatible. Source: about 1 year ago
If you haven't tried Jadx [1], give it a shot. It's by far the easiest way to reverse Android APKs. I doesn't do patching or reassembly, but I used it for reversing the Delong'hi APK for longshot [2][3] and the quality of output was fantastic. [1] https://github.com/skylot/jadx [3] https://grack.com/blog/2022/12/02/hacking-bluetooth-to-brew-coffee-on-github-actions-part-2/. - Source: Hacker News / over 1 year ago
Smali is a low level language for Dalvik bytecode and it can be quite a headache to interpret it correctly and achieve what you want. That's why I recommend another tool called jadx which can mostly recover Java code from a dex file, but unfortunately the conversion is not 100% possible. Also, editing is not possible with jadx. Source: over 1 year ago
I've also been doing some sleuthing myself — I want to figure out if there are other companies out there using Jetpack Compose. To do that I downloaded the apk binaries from Spotify, TikTok, Uber Eats, WhatsApp, Reddit and decompile them with jadx. - Source: dev.to / over 1 year ago
JADX - (Get JADX here, for this tutorial I'm using the GUI interface). Source: over 1 year ago
Debug Built-in variables is my favorite, I came across this post that teaches how to extract all built-in variables using the getClassLoader() method, but the Class referenced by the Author is no longer available. So, I decide to extract the Tasker .apk using adb, and did some search using JADX and I found the variables under this class: net.dinglisch.android.taskerm.gm and d as the declared field. After that, a... Source: over 1 year ago
If you don't use Proguard then you can use jadx to decompile the APK (download it from APKPURE or any other sideloaded apk website). Source: over 1 year ago
You'd probably have much better decompilation using a dedicated Android decompiler: https://github.com/skylot/jadx. Source: over 1 year ago
I can say only for android: - General Scanner -> https://github.com/MobSF/Mobile-Security-Framework-MobSF - Decompiler -> https://github.com/skylot/jadx. Source: almost 2 years ago
You can also decompile the code to java with https://github.com/skylot/jadx. Source: almost 2 years ago
I'm not sure if it wil help but check this out Https://github.com/skylot/jadx. Source: almost 2 years ago
Recently I have dived into the journey of learning how to hack, or more precisely pen-testing. Since I focused previously on Android Pentesting when I explained how to install Genymotion and VirtualBox on Parrot OS, I thought, why don't I write another tutorial on how to install ADB and JDX-GUI on Parrot OS as it is related and quite easy to do. This tutorial assumes you have Android Studio and Parrot OS... - Source: dev.to / almost 2 years ago
As much as I love Jadx, as much as I hate it, if your app does not have the proguard, with Jadx, anyone can easily get your whole application code, assets folder, XML, and all resources, in fact, anyone can see everything except the code if your app has the proguard enabled. Source: almost 2 years ago
APKTool is amazing! I wrote an article on how to do end-to-end reverse engineering of Android apps using APKTool: https://yasoob.me/posts/reverse-engineering-android-apps-apktool/ I love using Jadx (https://github.com/skylot/jadx) to get a better understanding of the code in Java and then use APKTool to reverse engineer, decompile and recompile the app If you are interested, Frida is also an amazing tool that... - Source: Hacker News / over 2 years ago
Also, I think those functions that you have written about Game Genie I think could be implemented by another app. It would require some reverse engineering, and some Android app development knowledge, but it could be possible to replace it, I think. If you like to deal with computers, this could be an interesting hobby. If you decide to try it out, some basics: - you need to extract the apk of Game Genie, like... Source: over 2 years ago
Do you know an article comparing JADX to other products?
Suggest a link to a post with product alternatives.
This is an informative page about JADX. You can review and discuss the product here. The primary details have not been verified within the last quarter, and they might be outdated. If you think we are missing something, please use the means on this page to comment or suggest changes. All reviews and comments are highly encouranged and appreciated as they help everyone in the community to make an informed choice. Please always be kind and objective when evaluating a product and sharing your opinion.