Lightemerald/TrickyStore
1
0
Fork 0
mirror of https://github.com/chiteroman/TrickyStore.git synced 2025-07-17 15:29:32 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
69 Commits 1 Branch 0 Tags
db72d6d3e96440d891cab8c8e3310d398940f254
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
Chris Renshaw db72d6d3e9 Enable spoof_build_vars on initial install to pass by default (#24) 
* Enable spoof_build_vars on initial install to pass by default

* Update default spoof_build_vars fingerprint
2024-07-25 15:08:02 +08:00
.github/workflows
Optimize building workflow
2024-07-18 13:23:53 +08:00
gradle
Switch to lsplugin cmaker
2024-07-18 13:55:46 +08:00
module
Enable spoof_build_vars on initial install to pass by default (#24)
2024-07-25 15:08:02 +08:00
service
move applicationId and creationDate to softwareEnforced
2024-07-19 10:54:35 +08:00
stub
Apply checkReleaseBuild = false to service and stub
2024-07-18 13:55:46 +08:00
.gitignore
Initial commit
2024-07-10 16:53:21 +08:00
.gitmodules
Refine spoof build vars
2024-07-21 09:14:22 +08:00
build.gradle.kts
bump to v1.0.2
2024-07-18 17:30:06 +08:00
gradle.properties
Initial commit
2024-07-10 16:53:21 +08:00
gradlew
Upgrade gradle & AGP
2024-07-18 13:23:36 +08:00
gradlew.bat
Upgrade gradle & AGP
2024-07-18 13:23:36 +08:00
README.md
Enable spoof_build_vars on initial install to pass by default (#24)
2024-07-25 15:08:02 +08:00
settings.gradle.kts
works now
2024-07-11 14:53:36 +08:00

README.md

Tricky Store

A trick of keystore. Android 12 or above is required.

Usage

  1. Flash this module and reboot.
  2. For more than DEVICE integrity, put an unrevoked hardware keybox.xml at /data/adb/tricky_store/keybox.xml (Optional).
  3. Customize target packages at /data/adb/tricky_store/target.txt (Optional).
  4. Enjoy!

keybox.xml

format:

<?xml version="1.0"?>
<AndroidAttestation>
    <NumberOfKeyboxes>1</NumberOfKeyboxes>
    <Keybox DeviceID="...">
        <Key algorithm="ecdsa|rsa">
            <PrivateKey format="pem">
-----BEGIN EC PRIVATE KEY-----
...
-----END EC PRIVATE KEY-----
            </PrivateKey>
            <CertificateChain>
                <NumberOfCertificates>...</NumberOfCertificates>
                    <Certificate format="pem">
-----BEGIN CERTIFICATE-----
...
-----END CERTIFICATE-----
                    </Certificate>
                ... more certificates
            </CertificateChain>
        </Key>...
    </Keybox>
</AndroidAttestation>

Build Vars Spoofing

Zygisk (or Zygisk Next) is needed for this feature to work.

If you still do not pass you can try enabling/disabling Build variable spoofing by creating/deleting the file /data/adb/tricky_store/spoof_build_vars.

Tricky Store will automatically generate example config props inside /data/adb/tricky_store/spoof_build_vars once created, on next reboot, then you may manually edit your spoof config.

Here is an example of a spoof config:

MANUFACTURER=Google
MODEL=Pixel 8 Pro
FINGERPRINT=google/husky_beta/husky:15/AP31.240617.009/12094726:user/release-keys
BRAND=google
PRODUCT=husky_beta
DEVICE=husky
RELEASE=15
ID=AP31.240617.009
INCREMENTAL=12094726
TYPE=user
TAGS=release-keys
SECURITY_PATCH=2024-07-05

Support TEE broken devices

Tricky Store will hack the leaf certificate by default. On TEE broken devices, this will not work because we can't retrieve the leaf certificate from TEE. You can add a ! after a package name to enable generate certificate support for this package.

For example:

# target.txt
# use leaf certificate hacking mode for KeyAttestation App
io.github.vvb2060.keyattestation
# use certificate generating mode for gms
com.google.android.gms!

Known issues

  • App Attest Key is not supported.
  • StrongBox is not supported.

Acknowledgement

Description
No description provided
Readme 507 KiB
Languages
C++ 63.4%
Java 19.1%
Kotlin 9.3%
Shell 4.7%
C 3%
Other 0.5%