Android Root Detection Bypass (Frida Hooking and APK Patching)

Опубликовано: 08 Июнь 2023
на канале: Intigriti

23,801

311

📱🐛 Learn the basics of Mobile Hacking (Android). In this video, we'll look at two common approaches to bypass root detection on Android devices. First, we'll use Frida to dynamically hook root-detection functions and override the behaviour. We'll do this via the Mobile Security Framework (MobSF), as well as with the standalone Frida (various troubleshooting steps were required in my case). Secondly, we'll use apktool to decompile, patch and then recompile the InsecureBankv2 APK, removing the root detection functionality. This static approach was demonstrated in the previous video, where we actually had to fix the root detection mechanism, before we could begin to bypass it 🥲 #BugBounty #EthicalHacking #Mobile #Android #Tutorial

Check the full video playlist HERE:    • Mobile Hacking

Overview:
0:00 Intro
0:16 Recap / Code review
2:22 Method 1: Hooking with Frida (MobSF)
5:32 Alternative: Frida (without MobSF)
8:43 Resolve Frida issues (downgrade)
12:55 Method 2: APK Patching
18:01 Conclusion

Looking to try android hacking and score some bug bounties? check out the active programs on Intigriti 💜

🧑💻 Sign up and start hacking right now - https://go.intigriti.com/register

👾 Join our Discord - https://go.intigriti.com/discord

🎙️ This show is hosted by   / _cryptocat   ( ‪@_CryptoCat‬ ) &   / intigriti

👕 Do you want some Intigriti Swag? Check out https://swag.intigriti.com

📚 Video-specific Resources 🤓
https://github.com/dineshshetty/Andro...
https://ibotpeaches.github.io/Apktool
https://github.com/techexpertize/SignApk
https://github.com/MobSF/Mobile-Secur...
https://frida.re/docs/examples/android
  / how-to-install-frida-in-android-device