CN113836499A - Reinforcing method for mobile application AAB file - Google Patents
Reinforcing method for mobile application AAB file Download PDFInfo
- Publication number
- CN113836499A CN113836499A CN202111124660.7A CN202111124660A CN113836499A CN 113836499 A CN113836499 A CN 113836499A CN 202111124660 A CN202111124660 A CN 202111124660A CN 113836499 A CN113836499 A CN 113836499A
- Authority
- CN
- China
- Prior art keywords
- file
- aab
- recording
- records
- mobile application
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 11
- 230000003014 reinforcing effect Effects 0.000 title claims abstract description 9
- 238000000605 extraction Methods 0.000 claims abstract description 4
- 229910052739 hydrogen Inorganic materials 0.000 claims abstract description 4
- 230000002787 reinforcement Effects 0.000 description 5
- 238000005336 cracking Methods 0.000 description 3
- 238000009517 secondary packaging Methods 0.000 description 3
- 238000009434 installation Methods 0.000 description 2
- 230000008569 process Effects 0.000 description 2
- 230000004075 alteration Effects 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000006243 chemical reaction Methods 0.000 description 1
- 238000007596 consolidation process Methods 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 230000008846 dynamic interplay Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000008520 organization Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/12—Protecting executable software
- G06F21/14—Protecting executable software against software analysis or reverse engineering, e.g. by obfuscation
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2107—File encryption
Abstract
The invention relates to the technical field of information security, in particular to a method for reinforcing a mobile application AAB file, which unpacks the AAB file to be reinforced, records the AAB file as a set A, classifies data in the set A, records a dex file as a set B, records a dynamic library file as a set C, records a resource file as a set D, records a configuration file as a file E, performs code shelling and function body extraction on the dex file, records an output file as a set F, performs shelling on the dynamic library file, records an output file as a set G, modifies the configuration file, records an output file as a file H, and performs merging treatment on F, G, H, D to obtain the reinforced AAB file.
Description
Technical Field
The invention relates to the technical field of information security, in particular to a method for reinforcing a mobile application AAB file.
Background
The APK is called as an Android application package, and means an Android application package, which is an application package file format used by an Android operating system and used for distributing and installing mobile applications and middleware; in 2018, google introduces a new APP dynamic framework (Android APP Bundle, AAB) to Android, AAB applies stronger data coding and dynamic interaction countermeasures, the application volume will be smaller, the downloading speed is faster, more importantly, it expands the definition of the application Bundle package, only contains necessary codes when running the application, the application volume in the AAB format can be 15% smaller than that in the APK format, and the Play Feature Delivery function of AAB enables developers to customize which function modules are delivered to which devices and when to deliver, and supports three modes of Delivery during installation, Delivery under conditions, Delivery on demand and the like.
The AAB format brings convenience to Android APP and also brings new challenges to the mobile security field: the installation package in the AAB format has a larger difference from the APK format in the aspects of organization structure and file content, and the traditional APP reinforcement technology cannot be directly applied to the data package generated by the APP Bundle mode.
Therefore, a reinforcing method for the mobile application AAB file needs to be designed, the codes in the novel AAB file are safely reinforced, the safety strength of the codes is improved by a new technical means, and the problems of secondary packaging and anti-reverse compiling and the function of code cracking and restoring are effectively solved.
Disclosure of Invention
The invention aims to overcome the defects of the prior art and provides a method for reinforcing a mobile application AAB file.
In order to achieve the above object, the present invention provides a method for reinforcing a mobile application AAB file, comprising the steps of:
s1, unpacking the AAB file to be reinforced and recording as a set A;
s2, classifying the data in the set A, recording a dex file as a set B, recording a dynamic library file as a set C, recording a resource file as a set D, and recording a configuration file as a file E;
s3, performing code shell adding and function body extraction on the dex file, and recording an output file as a set F;
s4, adding a shell to the dynamic library file, and recording the output file as a set G;
s5, modifying the configuration file, and recording the output file as a file H;
s6, combining F, G, H, D to obtain a reinforced AAB file;
compared with the prior art, the invention carries out safety reinforcement aiming at the codes in the novel AAB files, improves the safety intensity of the codes by a new technical means, and realizes the following beneficial effects:
the safety reinforcement strength of the AAB code is improved;
the code cracking and restoring means aiming at the AAB is effective;
the problem of secondary packaging of AAB can be effectively solved;
the anti-compilation capacity of the AAB is effectively improved;
drawings
Fig. 1 is a schematic diagram of the AAB file consolidation process according to the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
The invention will now be further described with reference to the accompanying drawings.
Referring to fig. 1, the present invention provides a method for reinforcing a mobile application AAB file, including the following steps:
s1, unpacking the AAB file to be reinforced and recording as a set A;
s2, classifying the data in the set A, recording a dex file as a set B, recording a dynamic library file as a set C, recording a resource file as a set D, and recording a configuration file as a file E;
s3, performing code shell adding and function body extraction on the dex file, and recording an output file as a set F;
s4, adding a shell to the dynamic library file, and recording the output file as a set G;
s5, modifying the configuration file, and recording the output file as a file H;
s6, combining F, G, H, D to obtain a reinforced AAB file;
the working principle is as follows:
in the actual operation process, firstly, the target AAB is unpacked to obtain a dex file, a so file, an android manifest and a resource file, wherein the dex file is analyzed, a function body is extracted, then a null instruction is filled after the function body is encrypted to form a processed dex file together with a dex shell code, the so file is subjected to integral so encryption to form a processed so file together with the so shell code, the android manifest forms a processed configuration file by modifying an entrance, and finally the processed dex file, the so file, the configuration file and the resource file are packed together to form a processed AAB file, so that the whole conversion process is completed.
The invention integrally solves the problem that the traditional APP reinforcement technology cannot be directly applied to the data packet generated by the APP Bundle mode, effectively improves the AAB anti-decompilation capability and the secondary packaging problem, and effectively aims at the AAB code cracking and restoring means and the safety reinforcement strength of the codes.
Although embodiments of the present invention have been shown and described, it will be appreciated by those skilled in the art that changes, modifications, substitutions and alterations can be made in these embodiments without departing from the principles and spirit of the invention, the scope of which is defined in the appended claims and their equivalents.
Claims (1)
1. A method for reinforcing a mobile application AAB file is characterized by comprising the following steps:
s1, unpacking the AAB file to be reinforced and recording as a set A;
s2, classifying the data in the set A, recording a dex file as a set B, recording a dynamic library file as a set C, recording a resource file as a set D, and recording a configuration file as a file E;
s3, performing code shell adding and function body extraction on the dex file, and recording an output file as a set F;
s4, adding a shell to the dynamic library file, and recording the output file as a set G;
s5, modifying the configuration file, and recording the output file as a file H;
and S6, combining F, G, H, D to obtain the reinforced AAB file.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202111124660.7A CN113836499A (en) | 2021-09-25 | 2021-09-25 | Reinforcing method for mobile application AAB file |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202111124660.7A CN113836499A (en) | 2021-09-25 | 2021-09-25 | Reinforcing method for mobile application AAB file |
Publications (1)
Publication Number | Publication Date |
---|---|
CN113836499A true CN113836499A (en) | 2021-12-24 |
Family
ID=78970012
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202111124660.7A Pending CN113836499A (en) | 2021-09-25 | 2021-09-25 | Reinforcing method for mobile application AAB file |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN113836499A (en) |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104021321A (en) * | 2014-06-17 | 2014-09-03 | 北京奇虎科技有限公司 | Reinforcing protection method and device for software installation package |
CN110232262A (en) * | 2019-06-17 | 2019-09-13 | 中金金融认证中心有限公司 | A kind of reinforcement means and system of Android application |
CN111191195A (en) * | 2019-12-10 | 2020-05-22 | 航天信息股份有限公司 | Method and device for protecting APK |
CN112667975A (en) * | 2020-12-29 | 2021-04-16 | 西北工业大学 | Android system application software safety protection method based on hybrid reinforcement |
-
2021
- 2021-09-25 CN CN202111124660.7A patent/CN113836499A/en active Pending
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104021321A (en) * | 2014-06-17 | 2014-09-03 | 北京奇虎科技有限公司 | Reinforcing protection method and device for software installation package |
CN110232262A (en) * | 2019-06-17 | 2019-09-13 | 中金金融认证中心有限公司 | A kind of reinforcement means and system of Android application |
CN111191195A (en) * | 2019-12-10 | 2020-05-22 | 航天信息股份有限公司 | Method and device for protecting APK |
CN112667975A (en) * | 2020-12-29 | 2021-04-16 | 西北工业大学 | Android system application software safety protection method based on hybrid reinforcement |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US8863079B2 (en) | Efficient and expansive conversions between reference and primitive | |
CN109710384B (en) | Safe Java intelligent contract interpretation execution engine and method | |
WO2017107706A1 (en) | Elf file protection method and system based on arm instruction virtualization | |
CN108733379B (en) | Android application reinforcement method based on DEX byte code extraction mapping confusion | |
EP3964948B1 (en) | Hardware acceleration method, compiler, and device | |
KR101740604B1 (en) | Generic unpacking of applications for malware detection | |
CN107480029B (en) | A kind of monitoring method and device of function call time | |
WO2016192197A1 (en) | Software upgrade method, apparatus and system of terminal, and computer storage medium | |
EP3563247B1 (en) | Method for compressing an application | |
US10380329B2 (en) | Method and apparatus for preventing application from being deciphered | |
JP2017146966A (en) | Method and system for extending function to package file | |
CN113761482A (en) | Program code protection method and device | |
CN113836499A (en) | Reinforcing method for mobile application AAB file | |
CN111782334B (en) | Dynamic link library file virtualization method, storage medium and terminal equipment | |
CN111880800B (en) | Application downloading method and application downloading system | |
CN102314571B (en) | Method and device for processing computer viruses | |
CN110619224A (en) | Data processing method and related device | |
CN109815651A (en) | IOS applied program processing method, system and medium based on intermediate code | |
CN116257867A (en) | Secret key encryption method and device | |
KR101412614B1 (en) | METHOD, TERMINAL AND COMPUTER-READABLE RECORDING MEDIA FOR COMPILING JAVASCRIPT INCLUDED IN WEB APPLICATION USING AOT (Ahead Of Time) | |
CN115756480A (en) | Android application reinforcement method, system and equipment | |
CN112134900B (en) | Data message processing method and device | |
CN112905271A (en) | Calling method and device of application program interface API and electronic equipment | |
CN112118285A (en) | Data transmission method and system suitable for client full-version browser | |
CN107292131A (en) | Method for protecting software and device |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination |