Randomly order Android permissions in manifest file

dana-at-cp / backdoor-apk

backdoor-apk is a shell script that simplifies the process of adding a backdoor to any Android APK file. Users of this shell script should have working knowledge of Linux, Bash, Metasploit, Apktool, the Android SDK, smali, etc. This shell script is provided as-is without warranty of any kind and is intended for educational purposes only.

Apache License 2.0

2.17k stars 699 forks source link

Randomly order Android permissions in manifest file #114

Closed dana-at-cp closed 6 years ago

dana-at-cp commented 7 years ago

The Android permissions injected from the Metasploit payload are static and used by some mobile antivirus vendors as a detection mechanism.

In the script, merging of Android permissions from the original APK with the Metasploit payload APK should also randomly order the new set of permissions.

dana-at-cp commented 6 years ago

Implemented randomization of permissions in the Android manifest when merged with permissions from the Metasploit payload APK. Included an option to keep the original permissions of the APK file.

New changes are in version 0.2.3 on master.