br0kenpixel/TrickyStore
1
0
Fork 0
mirror of https://github.com/5ec1cff/TrickyStore.git synced 2025-09-06 06:37:07 +00:00
Code Issues Packages Projects Releases 1 Wiki Activity
57 Commits 2 Branches 12 Tags
1.0.2
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
5ec1cff 62ae132432 bump to v1.0.2
2024-07-18 17:30:06 +08:00
.github/workflows
Optimize building workflow
2024-07-18 13:23:53 +08:00
gradle
Switch to lsplugin cmaker
2024-07-18 13:55:46 +08:00
module
clean up code
2024-07-18 17:19:59 +08:00
service
Apply checkReleaseBuild = false to service and stub
2024-07-18 13:55:46 +08:00
stub
Apply checkReleaseBuild = false to service and stub
2024-07-18 13:55:46 +08:00
.gitignore
Initial commit
2024-07-10 16:53:21 +08:00
.gitmodules
Upgrade libcxx and use c++ 23
2024-07-18 13:55:27 +08:00
build.gradle.kts
bump to v1.0.2
2024-07-18 17:30:06 +08:00
gradle.properties
Initial commit
2024-07-10 16:53:21 +08:00
gradlew
Upgrade gradle & AGP
2024-07-18 13:23:36 +08:00
gradlew.bat
Upgrade gradle & AGP
2024-07-18 13:23:36 +08:00
README.md
bump to v1.0.2
2024-07-18 17:30:06 +08:00
settings.gradle.kts
works now
2024-07-11 14:53:36 +08:00

README.md

Tricky Store

A trick of keystore. Android 12 or above is required.

Usage

  1. Flash this module and reboot.
  2. Put keybox.xml to /data/adb/tricky_store/keybox.xml .
  3. Put target packages to /data/adb/tricky_store/target.txt (Optional).
  4. Enjoy!

keybox.xml

format:

<?xml version="1.0"?>
<AndroidAttestation>
    <NumberOfKeyboxes>1</NumberOfKeyboxes>
    <Keybox DeviceID="...">
        <Key algorithm="ecdsa|rsa">
            <PrivateKey format="pem">
-----BEGIN EC PRIVATE KEY-----
...
-----END EC PRIVATE KEY-----
            </PrivateKey>
            <CertificateChain>
                <NumberOfCertificates>...</NumberOfCertificates>
                    <Certificate format="pem">
-----BEGIN CERTIFICATE-----
...
-----END CERTIFICATE-----
                    </Certificate>
                ... more certificates
            </CertificateChain>
        </Key>...
    </Keybox>
</AndroidAttestation>

Build Vars Spoofing

Zygisk (or Zygisk Next) is needed for this feature to work.

If you can not pass strong integrity, you can try to enable build vars spoofing by creating a file /data/adb/tricky_store/spoof_build_vars.

After doing that, TrickyStore will automatically generate an example config json inside /data/adb/tricky_store/spoof_build_vars on next reboot. Then you can manually edit your spoof config.

Here is an example of spoof config:

{
   "manufacturer": "Google",
   "model": "Pixel",
   "fingerprint": "google/sailfish/sailfish:8.1.0/OPM1.171019.011/4448085:user/release-keys",
   "brand": "google",
   "product": "sailfish",
   "device": "sailfish",
   "release": "8.1.0",
   "id": "OPM1.171019.011",
   "incremental": "4448085",
   "security_patch": "2017-12-05",
   "type": "user",
   "tags": "release-keys"
}

Support TEE broken devices

TrickyStore will hack leaf certificate by default. On TEE broken devices, this will not work because we can't retrieve leaf certificate from TEE. You can add a ! after package name to enable certificate generate support for this package.

For example:

# target.txt
# use leaf certificate hacking mode for KeyAttestation App
io.github.vvb2060.keyattestation
# use certificate generating mode for gms
com.google.android.gms!

Known issue

  • App Attest Key is not supported.
  • StrongBox is not supported.

Acknowledgement

Description
No description provided
Readme 948 KiB
Releases 1
1.3.0 Latest
2025-06-18 12:17:54 +00:00
Languages
Markdown 100%