StethoInjector Save

This script tampers the apk to inject Facebook Stetho library to inspect app sandbox data on non-rooted device

Project README

StethoInjector

Inspired from m0bilesecurity RMS tool which dynamically injects Stetho library created a counterpart to perform static tampering. This script tampers the apk to inject Facebook Stetho library and Stetho initialization code to inspect app sandbox data via Chrome browser even on a non-rooted device

Initialize Stetho Library

    static{
        try {
            Class activityThreadCls = Class.forName("android.app.ActivityThread");

            Method method = activityThreadCls.getMethod("currentApplication");
            Application stethoApp = (Application) method.invoke(null, null);
            Context stethocontext = stethoApp.getApplicationContext();
            Stetho.initialize(
                    Stetho.newInitializerBuilder(stethocontext)
                            .enableDumpapp(Stetho.defaultDumperPluginsProvider(stethocontext))
                            .enableWebKitInspector(Stetho.defaultInspectorModulesProvider(stethocontext))
                            .build());

        } catch (Exception e) {
            e.printStackTrace();
        }

    }

Usage

sh StethoInjector.sh <xyz.apk> <Class file where Stetho needs to be injected >

Ex: sh StethoInjector.sh 123.apk MainActivity

Once the APK is successfully tampered to include Stetho

Connect your device to desktop with USB.
Open the Desktop Chrome browser and type chrome://inspect/#devices.
You will see the mobile device model
Open the tampered app which you wanted to inspect
You can see the application that can be inspected in Chrome Browser
Press the inspect button corresponding to the app opened on device.
Boom! You can find the databases and shared preferences of the opened app(provided it created database and shared preferences)

You can also modify the data inside databases or shared preferences. Stetho also provides dumpapp tool, which allows you to list the files in app’s sandbox or dump specific folder/file or the entire sandbox data on a non-rooted device.

Dumpapp usage

List the files in sandbox

./dumpapp -p <process name> files tree

Download specific files to /mnt/sdcard provided app has write permission to external storage

./dumpapp -p <process name> files download files.zip files/<xxx>/<xyz.ext>

Download all the app sandbox files to /mnt/sdcard provided app has write permission to external storage

./dumpapp -p <process name> files download files.zip

Demo

For a demo used LastPass Authenticator and Duo Authenticator to inject Stetho library and initialize it. Once the tampered app is executed on a device, you can inspect the applications via Chrome browser.

Demo

Enjoy hacking!!!

Open Source Agenda is not affiliated with "StethoInjector" Project. README Source: darvincisec/StethoInjector

Stars

Open Issues

Last Commit

3 years ago

Repository

darvincisec/StethoInjector

License

Apache-2.0

Open Source Agenda Badge

<a href="https://www.opensourceagenda.com/projects/stethoinjector"><img src="https://www.opensourceagenda.com/projects/stethoinjector/reviews/badge.svg" alt="Open Source Agenda"></a>

Submit Review Review Your Favorite Project

Submit Resource Articles, Courses, Videos

Submit Article Submit a post to our blog

From the blog

Dec 11, 2022

How to Choose Which Programming Language to Learn First?

From the blog

Dec 11, 2022