XSpoofSignatures
Xposed module to spoof package signatures.
Features
- Allow any package to spoof their signature
- Make spoofed signature either the sole or first signer
- Spoof only after permission granted
- Compatible with the standardized spoofing mechanic (ref: microG)
Install
- Use Magisk to root your device
- Enable Zygisk
- Install LSPosed
- Install XSpoofSignatures from here
- Enable it in LSPosed
Usage (developers)
XSpoofSignatures supports two methods of spoofing:
- Sole signer [DEFAULT]: spoof to be the only signer on a package
- First signer: spoof to be the first signer on a package (multi signers)
- Note: this does not work for all signer checks such as GMS
Each package must declare and request (at runtime) the android.permission.FAKE_PACKAGE_SIGNATURE permission.\
If the permission is not granted then no spoofing will occur.
This module will check for two <meta-data> tags for each package that wants
to spoof it's own signature:
fake-signature -> The certificate fingerprint in hexfake-signature-only (optional, default true) -> Refer to "Sole signer" above