android-keystore-audit
android-keystore-audit copied to clipboard
WithSecureLabs
Hello All, I noticed that android 11 uses a different constructor for the BiometricPrompt$AuthenticationResult() function as you can find here: [https://developer.android.com/reference/android/hardware/biometrics/BiometricPrompt.AuthenticationResult](https://developer.android.com/reference/android/hardware/biometrics/BiometricPrompt.AuthenticationResult) Because of this the script will throw an error...
**Step:** - edit app/build.gradle adding ``` lintOptions { abortOnError false } ``` - build using `./gradlew build` App crashing immediately on start up Output of `adb logcat -b crash`: ```...
Thank you for providing such great tooling. Extremely helpful. However, 2 scripts do not work correctly on Android 9 and newer Frida version (>12.6). [https://github.com/FSecureLABS/android-keystore-audit/blob/master/frida-scripts/fingerprint-bypass-via-exception-handling.js](https://github.com/FSecureLABS/android-keystore-audit/blob/master/frida-scripts/fingerprint-bypass-via-exception-handling.js) after running the bypass() command,...
**Android Device Info:** - Android 10 - Samsung M31 The app is crashing when biometric authentication is successful after clicking on **LOCK** button **From the logcat stacktrace** : ``` E/AndroidRuntime:...
The applicationKey variable should be cleared from memory after locking the app.
I was doing tests on android 13 (API 33) and it always fails with the following message: > `javax.crypto.IllegalBlockSizeException > at android.security.keystore2.AndroidKeyStoreCipherSpiBase.engineDoFinal(AndroidKeyStoreCipherSpiBase.java:613) > at javax.crypto.Cipher.doFinal(Cipher.java:2056) > > Caused by: android.security.KeyStoreException:...
