XAPKDetector
apk-mitm
Our great sponsors
XAPKDetector | apk-mitm | |
---|---|---|
3 | 7 | |
566 | 3,395 | |
- | - | |
10.0 | 0.0 | |
4 days ago | 1 day ago | |
C++ | TypeScript | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
XAPKDetector
apk-mitm
-
Android Chrome 99 expands Certificate Transparency, breaking all MitM dev tools
> For example, Chrome Desktop, Firefox, and IE did not enforce HPKP if they encountered a cert from a user-added CA. Why does Android do the opposite?
Your examples are all browsers. I understood that Chrome on Android will continue to support using a user-added CA added to the user store. Android and desktops behave exactly the same for web browsers.
Non-browser apps are where the differences exist. On Android you must opt-in each app to trust the user store. I'd imagine that the next step is automating https://github.com/shroudedcode/apk-mitm to bulk replace all installed apps with modified apks.
What are some alternatives?
hackdroid - Security Apps for Android
game-builder-garage-editor - (WIP) Experimental save editor for Nintendo's Game Builder Garage
Apktool - A tool for reverse engineering Android apk files
mitm-omegle - Watch strangers talk on Omegle (man in the middle attack explained for kids)
mitmproxy - An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
Uber Adb Tools for Android - A tool that enables advanced features through adb installing and uninstalling apps like wildcards and multi device support. Useful if you want to clean your test device from all company apks or install a lot of apks in one go. Written in Java so it should run on your platform.
Uber Apk Signer - A cli tool that helps signing and zip aligning single or multiple Android application packages (APKs) with either debug or provided release certificates. It supports v1, v2 and v3 Android signing scheme has an embedded debug keystore and auto verifies after signing.
apkstudio - Open-source, cross platform Qt based IDE for reverse-engineering Android application packages.
chromium - The official GitHub mirror of the Chromium source
LIEF - LIEF - Library to Instrument Executable Formats
EmoCheck - Emotet detection tool for Windows OS