SandroMachado/AndroidTampering SandroMachado/AndroidTampering

  • Stars
    star
    141
  • Rank 259,971 (Top 6 %)
  • Language
    Java
  • License
    MIT License
  • Created almost 9 years ago
  • Updated over 7 years ago
Twitter logo Share LinkedIn logo Share Facebook logo Share
SandroMachado/AndroidTampering
github

SandroMachado

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Android library to protect your applications against tampering attacks.

AndroidTampering

Release

AndroidTampering is a library that provides an extra layer of security to your Android application. This library protects your application against simple tampering attacks. Please note that this protection methods can also be hacked. So, besides the tampering protection, don't forget to add all the other security recommendations like ProGuard, patching the Security Provider with ProviderInstaller...

Check this talk from Scott Alexander-Bown to learn more about android security for applications.

Gradle Dependency

Repository

First, add the following to your app's build.gradle file:

repositories {
    maven { url "https://jitpack.io" }
}

Them include the openalpr-android dependency:

dependencies {

    // ... other dependencies here.    	
    compile 'com.github.SandroMachado:AndroidTampering:1.0.3'

}

Usage

Code

Certificate signature

Get your certificate signature:

// This method will print your certificate signature to the logcat.
AndroidTamperingProtectionUtils.getCertificateSignature(context);

Check your logcat for something like:

01-12 01:16:15.965 32487-32487/com.sandro.test D/TAMPERING_PROTECTION:**yweraaaaaaaaggggDfsa6egkjjI=
**

Please note that this certificate signature contains a \n at the end.

Add tampering protection

AndroidTamperingProtection androidTamperingProtection = new AndroidTamperingProtection.Builder(context, "yweraaaaaaaaggggDfsa6egkjjI\n")
    .installOnlyFromPlayStore(true) // By default is set to false.
    .build();

if (!androidTamperingProtection.validate()) {
    Toast.makeText(this, "The application is compromised! Contact the application provider.", Toast.LENGTH_LONG).show();

    finish();
}

Applications that use AndroidTampering

More Repositories

1

openalpr-android

Android Automatic License Plate Recognition library (http://www.openalpr.com) ported for android.
Java
763
star
2

restaurant

An extension to the Snackbar view available at the Android Design Support Library
Java
40
star
3

BitcoinPaymentURI

Library to parse and generate Bitcoin payments URI.
Java
14
star
4

BitcoinPaymentURISwift

Library to parse and generate Bitcoin payments URI.
Swift
14
star
5

xcassetsutils

Shell Scripts to extract and restore all the images in an Asset Catalog folder (.xcassets)
Shell
10
star
6

evercam-play-android

Evercam Android app to view your cameras.
Java
6
star
7

bridge

A simple but powerful HTTP networking library for Android. It features a Fluent chainable API, and it's powered by Java/Android's URLConnection classes for maximum compatibility and speed.
Java
3
star
8

one2invite

One2Invite application source code
Java
2
star
9

GoodToGo_Swift

GoodToGo_Swift - A place to start
Swift
1
star
10

unofficial-cbox-android-sdk

[Unofficial] Cbox Android Sdk
Java
1
star
11

SonyCameraRemote

[WIP] SonyCameraRemote android app
Java
1
star