Add Android root detection bypass script from external repository #141
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Added root detection bypass
|
|
|
Great stuff, thanks @riyadmondol2006! I've added a few tweaks here you might find interesting - most notably it now tries to match the device's existing fingerprint if possible, rather than always replacing it with a fixed value (which won't match the OS version etc, and might be detected eventually). Now merged 😄. This'll be enabled by default in the next version of HTTP Toolkit's automatic Frida interception! Coming some time next week I hope. |
|
awesome....
…On Fri, Jun 20, 2025, 8:24 PM Tim Perry ***@***.***> wrote:
*pimterry* left a comment
(httptoolkit/frida-interception-and-unpinning#141)
<#141 (comment)>
Great stuff, thanks @riyadmondol2006 <https://github.com/riyadmondol2006>!
I've added a few tweaks here you might find interesting - most notably it
now tries to match the device's existing fingerprint if possible, rather
than always replacing it with a fixed value (which won't match the OS
version etc, and might be detected eventually). Now merged 😄. This'll be
enabled by default in the next version of HTTP Toolkit's automatic Frida
interception! Coming some time next week I hope.
—
Reply to this email directly, view it on GitHub
<#141 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AQ72HDQRUOHIESSWSXGRDI33EQKRLAVCNFSM6AAAAAB7JH7KEGVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDSOJRHAZDINZYGU>
.
You are receiving this because you were mentioned.Message ID:
***@***.***
com>
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This pull request adds a new script:
android/root_detection_bypass.js, sourced from:https://github.com/riyadmondol2006/Android-Root-Detection-Bypass---Frida-Script.git
The script disables various root detection mechanisms commonly found in Android apps. It includes both native and Java-level hooks to block file access, command execution, system property inspection, and package lookups associated with root detection.
It improves compatibility when intercepting apps that implement advanced root detection logic. A corresponding documentation entry has also been added to match the existing format in the repository.
This enhances the overall usefulness of the toolkit for dynamic analysis and TLS interception in rooted environments.