-
-
Notifications
You must be signed in to change notification settings - Fork 34
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Feature request] Extend support to banking apps using Zimperium #52
Comments
I need system logs to see what's going on. |
Oh, I assumed you have a samsung device and can simply install this DBS paylah app and reproduce it very easily.... |
I don't use my Samsung devices as daily drivers. Also, isn't a banking account required to use a banking app? |
No, I don't have an account either, the error is on launch and I guess that anyway you'll need to have it installed and test it to be able to fix it. |
Looks like the library checks for Knox support via Samsung's API's in system (https://docs.samsungknox.com/devref/knox-sdk/reference/com/samsung/android/knox/EnterpriseDeviceManager.html#getAPILevel()), issue is ZImperium has some anti-hook protection which prevents hooking the desired API's to disable any Knox code in the app. |
There's already this hook in the module used for the Samsung Health app: But as I said there's nothing that can be done with the anti-hook protection in place, unfortunately this goes beyond my current knowledge+the fact I'm very busy lately due to university. Manually spoofing the Knox API version in frameworks like ShaDisNX255/NcX_Stock@d97ec16 might do the trick. |
Yeah, I am afraid that more and more banking and wallet apps will start using Zimperium. Other brands' devices work just fine, as they don't use Knox. |
On KSU v0.7.1, current latest paylah detect shamiko v0.7.4, I have to disable shamiko and reboot before I can use it and this is quite annoying. |
Modding knoxsdk.jar is all you need to do. You can ignore/delete the prebuilt oat/odex/vdex/art files |
Device name:
Galaxy Note 10 Plus
Device model number:
SM-N975F
OS version:
Android 12
Software info:
Any
Magisk/KernelSU version:
26301 (Magisk Alpha)
Hook framework app:
LSPosed 1.9.1 (6990)
KnoxPatch version:
v0.6.1 (Enhancer v0.4)
Steps to reproduce:
Some baking apps such as DBS PayLah have introduced an advanced root check by Zimperium.
One of the components of Zimperium is called
Knox license receiver
.On Samsung phones using the latest Alpha+Shamiko+Zygisk the app detects root.
On Xiaomi phones with the same exact apps and settings, it doesn't detect root. I assume the reason is Knox's presence on Samsung devices.
I have tried adding the app to Knox Patcher in LSPosed, but then it doesn't even start at all. Easily reproducible.
Would be great if you could add compatibility for such banking apps.
Thank you.
Expected behaviour:
As above.
Actual behaviour:
As above.
Logs:
None available.
The text was updated successfully, but these errors were encountered: