WIKI

13.11 signature代码检测

(1)描述

检查app是否有调用获取signature的代码

(2)检测方法

检测类型:静态分析

Example Java code:

  PackageManager pkgManager = context.getPackageManager();

  pkgManager.getPackageInfo(context.getPackageName(),    PackageManager.GET_SIGNATURES).signatures[0].toByteArray(); 

 

Example Bytecode code:

  move-result-object v0

  iget-object v2, v0, Landroid/content/pm/PackageInfo;->signatures:[Landroid/content/pm/Signature;

(3)风险等级

提示