Fixed for new signing procedure (Android 10+), detect LAUNCHER defined by 'activity-alias' and Python 3+ support copy of kiks7's repo.
Just automate the process of injecting the frida-gadgets library into APKs to use Frida with non-rooted Android Devices. (you can also do it manually following this precious guide https://koz.io/using-frida-on-android-without-root/).
Frida-gadgets are called at the startup of the app and will listen on port 27042. After patched and installed the APK, you can use frida -U Gadget (over USB) to instrument your application.
- Decode the APK and locate the Main Activity reading the AndroidManifest.xml
- Add frida-gadgets-[arch].so into libs folder
- Inject smali code into the Main Activity
- Rebuild APK, Sign and zipalign.
- apktool
- zipalign
- python
- keytool & apksign (for Android 10+) or jarsign to sign it
- *nix (Native commands like 'rm' are used, sorry for Windows users [just fire up a VM || docker || what else])
git clone https://github.com/mrnbd/frida-non-root.git
chmod +x main.py
./main.py --help
./main.py -i <input APK> -o <output NAME>I didn't continue the project, I wrote it to automate the process but I'm no longer mantaining it and I know it's not the best code in the earth.