Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Hack And Protect Your Apps

Slvn
April 09, 2015
Programming
4
300

Hack And Protect Your Apps

Droidcon Montreal 2015

Slvn

April 09, 2015
Tweet

More Decks by Slvn

See All by Slvn
ROM Cooking - Droidcon UK 20013
slvn
5
200
Hack and protect your Android app
slvn
1
370

Other Decks in Programming

See All in Programming
Code smarter, not harder - How AI Coding Tools Boost Your Productivity | Webinar 2025
danielsogl
0
110
AI Agents with JavaScript
slobodan
0
210
Building a macOS screen saver with Kotlin (Android Makers 2025)
zsmb
1
130
技術選定を未来に繋いで活用していく
sakito
3
100
Java 24まとめ / Java 24 summary
kishida
3
430
小さく段階的リリースすることで深夜メンテを回避する
mkmk884
2
160
Bedrock×MCPで社内ブログ執筆文化を育てたい!
har1101
6
540
自分のために作ったアプリが、グローバルに使われるまで / Indie App Development Lunch LT
pixyzehn
1
150
The Weight of Data: Rethinking Cloud-Native Systems for the Age of AI
hollycummins
0
260
リアクティブシステムの変遷から理解するalien-signals / Learning alien-signals from the evolution of reactive systems
yamanoku
3
1.2k
Boost Your Performance and Developer Productivity with Jakarta EE 11
ivargrimstad
0
1.1k
List とは何か? / PHPerKaigi 2025
meihei3
0
610

Featured

See All Featured
ReactJS: Keep Simple. Everything can be a component!
pedronauck
666
120k
Being A Developer After 40
akosma
90
590k
Docker and Python
trallard
44
3.3k
Fashionably flexible responsive web design (full day workshop)
malarkey
407
66k
Build your cross-platform service in a week with App Engine
jlugia
229
18k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
45
9.5k
Imperfection Machines: The Place of Print at Facebook
scottboms
267
13k
For a Future-Friendly Web
brad_frost
176
9.7k
A Modern Web Designer's Workflow
chriscoyier
693
190k
The Art of Delivering Value - GDevCon NA Keynote
reverentgeek
12
1.4k
It's Worth the Effort
3n
184
28k
Large-scale JavaScript Application Architecture
addyosmani
511
110k

Transcript

  1. HACK AND PROTECT YOUR APPS

  2. AGENDA Droidcon Montréal 2015 01 Hack 02 Protect 03 Develop

    04 Conclude

  3. LET’S HACK Reverse engineering & red light saber

  4. LET’S HACK Reverse engineering & red light saber You underestimate

    the power of the dark side.

  5. LET’S HACK Demo : AdBlock Plus

  6. LET’S HACK Can we read Smali ? .method public isChecked

    ()Z .locals 1 .prologue .line 102 iget-boolean v0, p0, Lorg/jraf/android/backport/switchwidget/TwoStatePreference ;- >mChecked:Z return v0 .end method

  7. LET’S HACK Tools adb + unzip extract apk and some

    ressources apktool Smali + ressources jadx Java code (partial)

  8. LET’S PROTECT Obfuscation & The Force

  9. LET’S PROTECT Obfuscation & The Force Do. Or do not.

    There is no try.

  10. LET’S PROTECT What is obfuscation ? package a; public class

    a { [...] public boolean a() { return a; } }

  11. LET’S PROTECT Demo : Proguard

  12. LET’S PROTECT Is Obfuscation enough ? public class a {

    private static String a = "MotDePasseSecurePourChiffrer" ; public static Cipher a() { Cipher localCipher = Cipher.getInstance("AES/ECB/PKCS7Padding" , "BC"); localCipher .init(1, new SecretKeySpec (a.getBytes(), "AES")); return localCipher; } }

  13. LET’S PROTECT When ? When to protect ? · Whenever

    you want · Keep in mind that one motivated guy with enought ressources can break anything.

  14. LET’S DEVELOP Audit, opportunism & more...

  15. LET’S DEVELOP Audit, opportunism & more... GGGWARRRHH WWWW

  16. LET’S DEVELOP How can this help me ? audit your

    build, third parties apps explore frameworks debug, hidden APIs ...

  17. LET’S CONCLUDE All good things must come to an end

  18. LET’S CONCLUDE All good things come to an end LET’S

    HACK LET’S PROTECT LET’S DEVELOP

  19. Thank you ! Sylvain Galand [email protected] www.genymobile.com