JADX Reviews and details

Social recommendations and mentions

• A popular Bluetooth car battery monitor that siphons up all your location data

  The best way is to just start practicing. I would say pick some simple apps on your (Android) phone and dig straight in. The great thing about Android applications is that often they generally decompile quite nice into human readable Java soo the barrier of entry can be quite low to start reversing. Grab a copy of JADX[1] - it will decompress and decompile the APK files. If you don't have an Android handset, use... - Source: Hacker News / 11 months ago

• Hardware Question

  This may be overkill but you can use an oscilloscope to manually calculate the baudrate, i.e. Like this. It looks like it could be UART serial data, but this is a good resource to reference. Sometimes http is used as a means for communicating, and not necessarily directly to a browser see here. This is pretty common in embedded applications actually. You can try using dirbuster to see what hidden endpoints there... Source: 11 months ago

• improved nintype

  Jadx - skylot/jadx: Dex to Java decompiler (github.com) - Used for decompiling the apk - make the code readable. Source: 12 months ago

• How to securely set end point url and encryption keys in CN1 app

  I realized when app is decompiled using JADX class names are recreated as shown in this screenshot of sample app. Source: about 1 year ago

• Reverse Engineering the Facebook Messenger API

  Not sure. I started reverse engineering Java apps very early in my life — initially it was J2ME games. Decompilers of the time sucked but that didn't stop me from modding Gravity Defied :P I honestly don't know what's a good way of getting started on reverse engineering. There's a bunch of everything about Windows executables in particular, including "crackmes", but native machine code is a level up from JVM... - Source: Hacker News / about 1 year ago

• What Happens When Your Phone Is Spying on You

  A week ago I purchased a bluetooth device that takes some measurements. You require an Android or iOS application. The first thing the iOS app did was request permission for your location. Immediate fired up MITMproxy [1] running in transparent `--mode wireguard` and installed it's certificate in the iOS trust store. It was sending a whole bunch of data to China and HK. Since I don't have a jailbroken iPhone, it's... - Source: Hacker News / about 1 year ago

• Any legit cracking tutorial?

  Jadx: View the generated Java code for an app. This tool tries to recreate Java code from the smali bytecode, but keep in mind that sometimes it may not work because Java -> Smali conversion is not fully backwards compatible. Source: about 1 year ago

• Apk.sh is a Bash script that makes reverse engineering Android apps easier

  If you haven't tried Jadx [1], give it a shot. It's by far the easiest way to reverse Android APKs. I doesn't do patching or reassembly, but I used it for reversing the Delong'hi APK for longshot [2][3] and the quality of output was fantastic. [1] https://github.com/skylot/jadx [3] https://grack.com/blog/2022/12/02/hacking-bluetooth-to-brew-coffee-on-github-actions-part-2/. - Source: Hacker News / over 1 year ago

• Potentially OT: Any guides/crash course/cheatsheet on how to modify or perhaps reverse engineer an open source program to your preference?

  Smali is a low level language for Dalvik bytecode and it can be quite a headache to interpret it correctly and achieve what you want. That's why I recommend another tool called jadx which can mostly recover Java code from a dex file, but unfortunately the conversion is not 100% possible. Also, editing is not possible with jadx. Source: over 1 year ago

• Is Jetpack Compose ready for production development?

  I've also been doing some sleuthing myself — I want to figure out if there are other companies out there using Jetpack Compose. To do that I downloaded the apk binaries from Spotify, TikTok, Uber Eats, WhatsApp, Reddit and decompile them with jadx. - Source: dev.to / over 1 year ago

• [How To] Get All Built-in Variables in Tasker

  JADX - (Get JADX here, for this tutorial I'm using the GUI interface). Source: over 1 year ago

• [Project Share] Debug Tools

  Debug Built-in variables is my favorite, I came across this post that teaches how to extract all built-in variables using the getClassLoader() method, but the Class referenced by the Author is no longer available. So, I decide to extract the Tasker .apk using adb, and did some search using JADX and I found the variables under this class: net.dinglisch.android.taskerm.gm and d as the declared field. After that, a... Source: over 1 year ago

• Is there a way to decompile and rebundle an android bundle?

  If you don't use Proguard then you can use jadx to decompile the APK (download it from APKPURE or any other sideloaded apk website). Source: over 1 year ago

• A technical analysis of Pegasus for Android – Part 1

  You'd probably have much better decompilation using a dedicated Android decompiler: https://github.com/skylot/jadx. Source: over 1 year ago

• Can anyone recommend a good tool to pentest mobile apps?, I have the packages locally. Thanks

  I can say only for android: - General Scanner -> https://github.com/MobSF/Mobile-Security-Framework-MobSF - Decompiler -> https://github.com/skylot/jadx. Source: almost 2 years ago

• how to modify tiktok app

  You can also decompile the code to java with https://github.com/skylot/jadx. Source: almost 2 years ago

• Can someone please tell me if there is a way i can convert this into readable text?

  I'm not sure if it wil help but check this out Https://github.com/skylot/jadx. Source: almost 2 years ago

• Android: How to Install ADB, APK's, and JDX-GUI on Parrot OS

  Recently I have dived into the journey of learning how to hack, or more precisely pen-testing. Since I focused previously on Android Pentesting when I explained how to install Genymotion and VirtualBox on Parrot OS, I thought, why don't I write another tutorial on how to install ADB and JDX-GUI on Parrot OS as it is related and quite easy to do. This tutorial assumes you have Android Studio and Parrot OS... - Source: dev.to / almost 2 years ago

• is whole android apk can be decompiled?

  As much as I love Jadx, as much as I hate it, if your app does not have the proguard, with Jadx, anyone can easily get your whole application code, assets folder, XML, and all resources, in fact, anyone can see everything except the code if your app has the proguard enabled. Source: almost 2 years ago

• APKTool: A tool for reverse engineering Android APK files

  APKTool is amazing! I wrote an article on how to do end-to-end reverse engineering of Android apps using APKTool: https://yasoob.me/posts/reverse-engineering-android-apps-apktool/ I love using Jadx (https://github.com/skylot/jadx) to get a better understanding of the code in Java and then use APKTool to reverse engineer, decompile and recompile the app If you are interested, Frida is also an amazing tool that... - Source: Hacker News / over 2 years ago

• Is there a privacy respecting alternative to Google Family Link?

  Also, I think those functions that you have written about Game Genie I think could be implemented by another app. It would require some reverse engineering, and some Android app development knowledge, but it could be possible to replace it, I think. If you like to deal with computers, this could be an interesting hobby. If you decide to try it out, some basics: - you need to extract the apk of Game Genie, like... Source: over 2 years ago