Primer paso de la investigacion. Se aportan el .apk, las carpetas con el apk extraido y el apk descompilado. El archivo API_DOCUMENTATION.md es un archivo donde se anotaran los descubrimientos del funcionamiento de la API, y los .py son scripts para probar la funcionalidad de la API con los métodos que vayamos encontrando. Finalmente, los archivos .js son scripts de Frida para extraer informacion de la APP durante la ejecucion.
This commit is contained in:
74
apk_decompiled/sources/m3/e.java
Normal file
74
apk_decompiled/sources/m3/e.java
Normal file
@@ -0,0 +1,74 @@
|
||||
package m3;
|
||||
|
||||
import java.security.KeyStore;
|
||||
import java.security.Provider;
|
||||
import java.util.Arrays;
|
||||
import java.util.List;
|
||||
import javax.net.ssl.SSLContext;
|
||||
import javax.net.ssl.SSLSocket;
|
||||
import javax.net.ssl.TrustManager;
|
||||
import javax.net.ssl.TrustManagerFactory;
|
||||
import javax.net.ssl.X509TrustManager;
|
||||
import kotlin.jvm.internal.Intrinsics;
|
||||
import org.bouncycastle.jsse.provider.BouncyCastleJsseProvider;
|
||||
|
||||
/* loaded from: classes3.dex */
|
||||
public final class e extends n {
|
||||
|
||||
/* renamed from: d, reason: collision with root package name */
|
||||
public static final boolean f7813d;
|
||||
|
||||
/* renamed from: c, reason: collision with root package name */
|
||||
public final Provider f7814c = new BouncyCastleJsseProvider();
|
||||
|
||||
static {
|
||||
boolean z3 = false;
|
||||
try {
|
||||
Class.forName("org.bouncycastle.jsse.provider.BouncyCastleJsseProvider", false, d.class.getClassLoader());
|
||||
z3 = true;
|
||||
} catch (ClassNotFoundException unused) {
|
||||
}
|
||||
f7813d = z3;
|
||||
}
|
||||
|
||||
@Override // m3.n
|
||||
public final void d(SSLSocket sslSocket, String str, List protocols) {
|
||||
Intrinsics.checkNotNullParameter(sslSocket, "sslSocket");
|
||||
Intrinsics.checkNotNullParameter(protocols, "protocols");
|
||||
super.d(sslSocket, str, protocols);
|
||||
}
|
||||
|
||||
@Override // m3.n
|
||||
public final String f(SSLSocket sslSocket) {
|
||||
Intrinsics.checkNotNullParameter(sslSocket, "sslSocket");
|
||||
Intrinsics.checkNotNullParameter(sslSocket, "sslSocket");
|
||||
return null;
|
||||
}
|
||||
|
||||
@Override // m3.n
|
||||
public final SSLContext k() {
|
||||
SSLContext sSLContext = SSLContext.getInstance("TLS", this.f7814c);
|
||||
Intrinsics.checkNotNullExpressionValue(sSLContext, "getInstance(\"TLS\", provider)");
|
||||
return sSLContext;
|
||||
}
|
||||
|
||||
@Override // m3.n
|
||||
public final X509TrustManager m() {
|
||||
TrustManagerFactory trustManagerFactory = TrustManagerFactory.getInstance("PKIX", "BCJSSE");
|
||||
trustManagerFactory.init((KeyStore) null);
|
||||
TrustManager[] trustManagers = trustManagerFactory.getTrustManagers();
|
||||
Intrinsics.checkNotNull(trustManagers);
|
||||
if (trustManagers.length == 1) {
|
||||
TrustManager trustManager = trustManagers[0];
|
||||
if (trustManager instanceof X509TrustManager) {
|
||||
Intrinsics.checkNotNull(trustManager, "null cannot be cast to non-null type javax.net.ssl.X509TrustManager");
|
||||
return (X509TrustManager) trustManager;
|
||||
}
|
||||
}
|
||||
StringBuilder sb = new StringBuilder("Unexpected default trust managers: ");
|
||||
String arrays = Arrays.toString(trustManagers);
|
||||
Intrinsics.checkNotNullExpressionValue(arrays, "toString(this)");
|
||||
sb.append(arrays);
|
||||
throw new IllegalStateException(sb.toString().toString());
|
||||
}
|
||||
}
|
||||
Reference in New Issue
Block a user