How to reverse-engineer / decompile an Android APK which was obfuscated using ProGuard?

android apk reverse-engineering proguard decompiling
11,721

Everything you're looking for is in the mapping.txt file, but I've never seen a tool that would reverse it all. Some of the obfuscations that Proguard performs are not just simple renaming of the methods and variables so chances are you won't be able to do what you're trying to do. retrace.jar that comes with the Proguard download might get you a bit further but I'm pretty sure you have to use that with a stacktrace file.

Share:
11,721
jenzz
Author by

jenzz

Blog? http://blog.jensdriller.com Twitter? http://twitter.jensdriller.com GitHub? http://github.jensdriller.com

Updated on June 05, 2022

Comments

  • jenzz
    jenzz almost 2 years

    Unfortunately, I have lost the source code of one of my apps which I obfuscated using ProGuard.
    I still have the .apk file and some config files which were generated by ProGuard:

    1. dump.txt
    2. mapping.txt
    3. seeds.txt
    4. usage.txt

    What have I done so far?

    1. Decoded resource files using apktool.
      Yay, I've got those back!

    2. Extracted .apk file and converted the classes.dex file into a .jar file using dex2jar.

    If I now view the source code (.jar file) using JD-Gui, I see my obfuscated code. Something like this:

    class c {
  TextView a;
  TextView b;
  TextView c;
  TextView d;
  CheckBox e;
}

protected List a(Uri[] paramArrayOfUri) { ... }

protected void a(List paramList) { ... }

    Also some loops look a bit weird. I don't write infinite loops:

    while (true) {
     if (!localIterator.hasNext())
        return localArrayList;
     ProviderInfo[] arrayOfProviderInfo = ((PackageInfo)localIterator.next()).providers;
     if (arrayOfProviderInfo == null)
        continue;
     int i = arrayOfProviderInfo.length;
}

    Is it possible to re-map the obfuscated code to my original source code using any of ProGuard's .txt files? I would like to see my own variable names / method signatures.
    Or can these files only be used to follow crash report stack traces?

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Android: Java: Proguard: How to: verify if my jar (different jar project)/apk are successfully processed? (I am thinking to reverse engineer it)
APKtools (APK Studio) Could not decode arsc file
Obfuscate entire React Native app including JavaScript code
Reducing android app (apk) size
Is it really impossible to protect Android apps from reverse engineering?
Is it possible to decompile an Android .apk file?
Where does Android Studio save the ProGuard mapping file?
Reverse engineering from an APK file to a project
Best practice for storing and protecting private API keys in applications
How to avoid reverse engineering of an APK file