B4A Library RootBeer - Root checker library

Original library: https://github.com/scottyab/rootbeer
Based on RootBeer v0.1.0 (25. May 2021.)

Please read documentation, disclaimer and limitations.

1612212184955.png
 

Attachments

  • RootBeerExample.zip
    9.4 KB · Views: 371
  • RootBeerLibrary.zip
    21.5 KB · Views: 333
Last edited:

JackKirk

Well-Known Member
Licensed User
Longtime User
I have a problem with this.

If you take the example as supplied, compile it with Release (obfuscated) then run the Rootbeer.apk through dex2jar then jd and search for "rootbeer" it is all over the place.

Surely this is a dead giveaway to even the most junior hacker.

With a bit of judicious fiddling of jar/xml/aar names in the Additional Libraries and some editing of the xml I can eliminate most of these but I can't work out how to obscure things like "import com.pendrush.rootbeer.wrap.RootBeerWrap;" and "import com.scottyab.rootbeer.util.QLog;"

Is this a legitimate concern?

If so, how do you obscure "rootbeer" everywhere?

Thanks in anticipation...
 

JackKirk

Well-Known Member
Licensed User
Longtime User
No way to hide it other than changing it in the source code itself.
Pendrush, I would be happy to fund a "private label" version of this library - might be a nice little sideline if others also would like same.

I'm not sure why it matters.
Erel, if a hacker does the most rudimentary things - dex2jar then jd - "rootbeer" appears all over the place, making it very easy for him/her to skip it - I just want to make it as hard as possible.
 
Top