├── .gitignore ├── 2014-阿里移动安全挑战赛 ├── AliCrackme_1.apk ├── AliCrackme_2.apk ├── AliCrackme_3.apk ├── AliCrackme_4.apk ├── AliCrackme_5.apk └── README.md ├── 2015-0CTF ├── EasyRe.apk └── README.md ├── 2016-SSCTF └── re1-e7e4ad1a.apk ├── 2018-CISCN ├── README.md └── TryGetFlag_02_D45L2DW.apk ├── 2018-强网杯 ├── picturelock │ └── picturelock_83hd289tbfd6a2993hhfjdskbv7237991hfke.apk └── simplecheck │ ├── simplecheck-jadx.java │ ├── simplecheck-jeb.java │ ├── simplecheck.py │ └── simplecheck_1982yrejnxy2189236t4c7816025789346dx1h782635789cb12653.apk ├── 9999-Tutorial ├── AS 调试 Smali │ ├── README.md │ └── jwx02.apk ├── IDA 调试 so │ └── README.md └── Smali 插桩 │ ├── README.md │ └── crackme1.apk └── README.md /.gitignore: -------------------------------------------------------------------------------- 1 | .DS_Store 2 | **/.DS_Store 3 | -------------------------------------------------------------------------------- /2014-阿里移动安全挑战赛/AliCrackme_1.apk: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SewellDinG/APKSample/fcef20d03794c9b8311b753137736ca1e98e7f4e/2014-阿里移动安全挑战赛/AliCrackme_1.apk -------------------------------------------------------------------------------- /2014-阿里移动安全挑战赛/AliCrackme_2.apk: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SewellDinG/APKSample/fcef20d03794c9b8311b753137736ca1e98e7f4e/2014-阿里移动安全挑战赛/AliCrackme_2.apk -------------------------------------------------------------------------------- /2014-阿里移动安全挑战赛/AliCrackme_3.apk: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SewellDinG/APKSample/fcef20d03794c9b8311b753137736ca1e98e7f4e/2014-阿里移动安全挑战赛/AliCrackme_3.apk -------------------------------------------------------------------------------- /2014-阿里移动安全挑战赛/AliCrackme_4.apk: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SewellDinG/APKSample/fcef20d03794c9b8311b753137736ca1e98e7f4e/2014-阿里移动安全挑战赛/AliCrackme_4.apk -------------------------------------------------------------------------------- /2014-阿里移动安全挑战赛/AliCrackme_5.apk: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SewellDinG/APKSample/fcef20d03794c9b8311b753137736ca1e98e7f4e/2014-阿里移动安全挑战赛/AliCrackme_5.apk -------------------------------------------------------------------------------- /2014-阿里移动安全挑战赛/README.md: -------------------------------------------------------------------------------- 1 | WriteUp: 2 | 3 | AliCrackme_1.apk:[https://www.bodkin.ren/index.php/archives/602](https://www.bodkin.ren/index.php/archives/602) 4 | 5 | AliCrackme_2.apk:[https://www.bodkin.ren/index.php/archives/643](https://www.bodkin.ren/index.php/archives/643) -------------------------------------------------------------------------------- /2015-0CTF/EasyRe.apk: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SewellDinG/APKSample/fcef20d03794c9b8311b753137736ca1e98e7f4e/2015-0CTF/EasyRe.apk -------------------------------------------------------------------------------- /2015-0CTF/README.md: -------------------------------------------------------------------------------- 1 | WriteUp: 2 | 3 | 1、EasyRe.apk:[https://www.bodkin.ren/index.php/archives/606](https://www.bodkin.ren/index.php/archives/606) 4 | 5 | 其他参考WP: 6 | 7 | [http://www.purpleroc.com/MD/2015-03-31@0CTF_WriteUp.html](http://www.purpleroc.com/MD/2015-03-31@0CTF_WriteUp.html) 8 | 9 | [http://eternalsakura13.com/2018/02/10/easyre](http://eternalsakura13.com/2018/02/10/easyre) -------------------------------------------------------------------------------- /2016-SSCTF/re1-e7e4ad1a.apk: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SewellDinG/APKSample/fcef20d03794c9b8311b753137736ca1e98e7f4e/2016-SSCTF/re1-e7e4ad1a.apk -------------------------------------------------------------------------------- /2018-CISCN/README.md: -------------------------------------------------------------------------------- 1 | WriteUp: 2 | 3 | 2、TryGetFlag\_02\_D45L2DW.apk 4 | 5 | 只有一个输入点和一个check按钮,使用爱加密且有反调试,直接DDMS来dump内存来搜索敏感字符串: 6 | 7 | ``` 8 | [Go0s]: ~/Desktop 9 | ➜ strings monkeylord.trygetflag.hprof | grep -i ciscn 10 | (standard input):29685:CISCN{You.Got.It.187d34} 11 | (standard input):29686:CISCN{You.Got.It.187d34}! 12 | (standard input):29693:CISCN{You.Got.It.187d34} 13 | (standard input):29694:CISCN{You.Got.It.187d34}! 14 | ``` 15 | 16 | 其他WP:[https://www.52pojie.cn/thread-732912-1-1.html](https://www.52pojie.cn/thread-732912-1-1.html) -------------------------------------------------------------------------------- /2018-CISCN/TryGetFlag_02_D45L2DW.apk: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SewellDinG/APKSample/fcef20d03794c9b8311b753137736ca1e98e7f4e/2018-CISCN/TryGetFlag_02_D45L2DW.apk -------------------------------------------------------------------------------- /2018-强网杯/picturelock/picturelock_83hd289tbfd6a2993hhfjdskbv7237991hfke.apk: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SewellDinG/APKSample/fcef20d03794c9b8311b753137736ca1e98e7f4e/2018-强网杯/picturelock/picturelock_83hd289tbfd6a2993hhfjdskbv7237991hfke.apk -------------------------------------------------------------------------------- /2018-强网杯/simplecheck/simplecheck-jadx.java: -------------------------------------------------------------------------------- 1 | public class a { 2 | private static int[] a = new int[]{0, 146527998, 205327308, 94243885, 138810487, 408218567, 77866117, 71548549, 563255818, 559010506, 449018203, 576200653, 307283021, 467607947, 314806739, 341420795, 341420795, 469998524, 417733494, 342206934, 392460324, 382290309, 185532945, 364788505, 210058699, 198137551, 360748557, 440064477, 319861317, 676258995, 389214123, 829768461, 534844356, 427514172, 864054312}; 3 | private static int[] b = new int[]{13710, 46393, 49151, 36900, 59564, 35883, 3517, 52957, 1509, 61207, 63274, 27694, 20932, 37997, 22069, 8438, 33995, 53298, 16908, 30902, 64602, 64028, 29629, 26537, 12026, 31610, 48639, 19968, 45654, 51972, 64956, 45293, 64752, 37108}; 4 | private static int[] c = new int[]{38129, 57355, 22538, 47767, 8940, 4975, 27050, 56102, 21796, 41174, 63445, 53454, 28762, 59215, 16407, 64340, 37644, 59896, 41276, 25896, 27501, 38944, 37039, 38213, 61842, 43497, 9221, 9879, 14436, 60468, 19926, 47198, 8406, 64666}; 5 | private static int[] d = new int[]{0, -341994984, -370404060, -257581614, -494024809, -135267265, 54930974, -155841406, 540422378, -107286502, -128056922, 265261633, 275964257, 119059597, 202392013, 283676377, 126284124, -68971076, 261217574, 197555158, -12893337, -10293675, 93868075, 121661845, 167461231, 123220255, 221507, 258914772, 180963987, 107841171, 41609001, 276531381, 169983906, 276158562}; 6 | 7 | public static boolean a(String str) { 8 | if (str.length() != b.length) { 9 | return false; 10 | } 11 | int[] iArr = new int[a.length]; 12 | iArr[0] = 0; 13 | int i = 1; 14 | for (byte b : str.getBytes()) { 15 | iArr[i] = b; 16 | i++; 17 | } 18 | int i2 = 0; 19 | while (i2 < c.length) { 20 | if (a[i2] != (((b[i2] * iArr[i2]) * iArr[i2]) + (c[i2] * iArr[i2])) + d[i2] || a[i2 + 1] != (((b[i2] * iArr[i2 + 1]) * iArr[i2 + 1]) + (c[i2] * iArr[i2 + 1])) + d[i2]) { 21 | return false; 22 | } 23 | i2++; 24 | } 25 | return true; 26 | } 27 | } -------------------------------------------------------------------------------- /2018-强网杯/simplecheck/simplecheck-jeb.java: -------------------------------------------------------------------------------- 1 | package com.a.simplecheck; 2 | 3 | public class a { 4 | private static int[] a; 5 | private static int[] b; 6 | private static int[] c; 7 | private static int[] d; 8 | 9 | static { 10 | a.a = new int[] { 0, 146527998, 205327308, 94243885, 138810487, 408218567, 77866117, 71548549, 563255818, 11 | 559010506, 449018203, 576200653, 307283021, 467607947, 314806739, 341420795, 341420795, 469998524, 12 | 417733494, 342206934, 392460324, 382290309, 185532945, 364788505, 210058699, 198137551, 360748557, 13 | 440064477, 319861317, 676258995, 389214123, 829768461, 534844356, 427514172, 864054312 }; 14 | a.b = new int[] { 13710, 46393, 49151, 36900, 59564, 35883, 3517, 52957, 1509, 61207, 63274, 27694, 20932, 15 | 37997, 22069, 8438, 33995, 53298, 16908, 30902, 64602, 64028, 29629, 26537, 12026, 31610, 48639, 19968, 16 | 45654, 51972, 64956, 45293, 64752, 37108 }; 17 | a.c = new int[] { 38129, 57355, 22538, 47767, 8940, 4975, 27050, 56102, 21796, 41174, 63445, 53454, 28762, 18 | 59215, 16407, 64340, 37644, 59896, 41276, 25896, 27501, 38944, 37039, 38213, 61842, 43497, 9221, 9879, 19 | 14436, 60468, 19926, 47198, 8406, 64666 }; 20 | a.d = new int[] { 0, -341994984, -370404060, -257581614, -494024809, -135267265, 54930974, -155841406, 21 | 540422378, -107286502, -128056922, 265261633, 275964257, 119059597, 202392013, 283676377, 126284124, 22 | -68971076, 261217574, 197555158, -12893337, -10293675, 93868075, 121661845, 167461231, 123220255, 23 | 221507, 258914772, 180963987, 107841171, 41609001, 276531381, 169983906, 276158562 }; 24 | } 25 | 26 | public static boolean a(String arg8) { 27 | boolean v1 = false; 28 | if (arg8.length() == a.b.length) { 29 | int[] v4 = new int[a.a.length]; 30 | v4[0] = 0; 31 | byte[] v5 = arg8.getBytes(); 32 | int v6 = v5.length; 33 | int v0 = 0; 34 | int v3 = 1; 35 | while (v0 < v6) { 36 | v4[v3] = v5[v0]; 37 | ++v3; 38 | ++v0; 39 | } 40 | v0 = 0; 41 | while (true) { 42 | if (v0 >= a.c.length) { 43 | break; 44 | } else if (a.a[v0] == a.b[v0] * v4[v0] * v4[v0] + a.c[v0] * v4[v0] + a.d[v0] 45 | && a.a[v0 + 1] == a.b[v0] * v4[v0 + 1] * v4[v0 + 1] + a.c[v0] * v4[v0 + 1] + a.d[v0]) { 46 | ++v0; 47 | continue; 48 | } 49 | 50 | return v1; 51 | } 52 | 53 | v1 = true; 54 | } 55 | 56 | return v1; 57 | } 58 | } 59 | -------------------------------------------------------------------------------- /2018-强网杯/simplecheck/simplecheck.py: -------------------------------------------------------------------------------- 1 | #!/usr/bin/python 2 | # -*- coding: utf-8 -*- 3 | 4 | import string 5 | 6 | a = [0, 146527998, 205327308, 94243885, 138810487, 408218567, 77866117, 71548549, 563255818, 559010506, 449018203, 576200653, 307283021, 467607947, 314806739, 341420795, 341420795, 469998524, 7 | 417733494, 342206934, 392460324, 382290309, 185532945, 364788505, 210058699, 198137551, 360748557, 440064477, 319861317, 676258995, 389214123, 829768461, 534844356, 427514172, 864054312] 8 | b = [0, 13710, 46393, 49151, 36900, 59564, 35883, 3517, 52957, 1509, 61207, 63274, 27694, 20932, 37997, 22069, 8438, 33995, 9 | 53298, 16908, 30902, 64602, 64028, 29629, 26537, 12026, 31610, 48639, 19968, 45654, 51972, 64956, 45293, 64752, 37108] 10 | c = [0, 38129, 57355, 22538, 47767, 8940, 4975, 27050, 56102, 21796, 41174, 63445, 53454, 28762, 59215, 16407, 64340, 37644, 11 | 59896, 41276, 25896, 27501, 38944, 37039, 38213, 61842, 43497, 9221, 9879, 14436, 60468, 19926, 47198, 8406, 64666] 12 | d = [0, 0, -341994984, -370404060, -257581614, -494024809, -135267265, 54930974, -155841406, 540422378, -107286502, -128056922, 265261633, 275964257, 119059597, 202392013, 283676377, 13 | 126284124, -68971076, 261217574, 197555158, -12893337, -10293675, 93868075, 121661845, 167461231, 123220255, 221507, 258914772, 180963987, 107841171, 41609001, 276531381, 169983906, 276158562] 14 | 15 | flag = '' 16 | for i2 in range(len(a)): 17 | for i in string.printable: 18 | if (a[i2] == (((b[i2] * ord(i)) * ord(i)) + (c[i2] * ord(i))) + d[i2]) or a[i2] == (((b[i2-1] * ord(i)) * ord(i)) + (c[i2-1] * ord(i))) + d[i2-1]: 19 | flag += i 20 | print flag 21 | break 22 | -------------------------------------------------------------------------------- /2018-强网杯/simplecheck/simplecheck_1982yrejnxy2189236t4c7816025789346dx1h782635789cb12653.apk: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SewellDinG/APKSample/fcef20d03794c9b8311b753137736ca1e98e7f4e/2018-强网杯/simplecheck/simplecheck_1982yrejnxy2189236t4c7816025789346dx1h782635789cb12653.apk -------------------------------------------------------------------------------- /9999-Tutorial/AS 调试 Smali/README.md: -------------------------------------------------------------------------------- 1 | 欢迎:[https://www.bodkin.ren/index.php/archives/566](https://www.bodkin.ren/index.php/archives/566) -------------------------------------------------------------------------------- /9999-Tutorial/AS 调试 Smali/jwx02.apk: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SewellDinG/APKSample/fcef20d03794c9b8311b753137736ca1e98e7f4e/9999-Tutorial/AS 调试 Smali/jwx02.apk -------------------------------------------------------------------------------- /9999-Tutorial/IDA 调试 so/README.md: -------------------------------------------------------------------------------- 1 | 欢迎:[https://www.bodkin.ren/index.php/archives/641](https://www.bodkin.ren/index.php/archives/641) -------------------------------------------------------------------------------- /9999-Tutorial/Smali 插桩/README.md: -------------------------------------------------------------------------------- 1 | 欢迎:[https://www.bodkin.ren/index.php/archives/560](https://www.bodkin.ren/index.php/archives/560) 2 | -------------------------------------------------------------------------------- /9999-Tutorial/Smali 插桩/crackme1.apk: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/SewellDinG/APKSample/fcef20d03794c9b8311b753137736ca1e98e7f4e/9999-Tutorial/Smali 插桩/crackme1.apk -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- 1 | APK样本库 --------------------------------------------------------------------------------