Maas360 MDM for Android

devadvance / rootcloak

Open source module for Xposed Framework that hides root from specific apps

Other

495 stars 127 forks source link

Maas360 MDM for Android #23

Open artlan opened 8 years ago

artlan commented 8 years ago

https://play.google.com/store/apps/details?id=com.fiberlink.maas360.android.control

This used to work just fine until the latest update Not sure how to add a label to this if I'm not a contributor...

bobbarnes2 commented 8 years ago

Here is some output of how Maas360 is detecting rootcloak. This /system/xbin/FAKEJUNKFILE is coming from the initFile method in RootCloak.java

It appears that after the file constructor, they inspect it to ensure it is still pointing at the file they expect it to be.

| I | IntentService[Control Service] | chp | Expected: /su/bin Actual: /system/xbin/FAKEJUNKFILE | I | IntentService[Device Attribute Service] | chp | Expected: /su/bin Actual: /system/xbin/FAKEJUNKFILE

hikaritenchi commented 8 years ago

Wow, interesting. I guess we'll have to think of a different method for hiding the file. Thanks.

tomvanoppens commented 8 years ago

is there any progress on this ?