I just wanted to ask how can i emulate a self ediied ROM on Microsoft Standalone Device Emulator 1.0? Thnx in Advance.
Unfortunatly no.
dferreira said:
Unfortunatly no.
Click to expand...
Click to collapse
Sorry but i guess it can be done i read it on internet on a google search but icouldnt find it out how to do it.
In case you find a way that any of the ALREADY posts about this on the forum have mentioned, let me know!
Have you searched this forum about it? If you did, you wouldn't even start this thread...
dferreira said:
In case you find a way that any of the ALREADY posts about this on the forum have mentioned, let me know!
Have you searched this forum about it? If you did, you wouldn't even start this thread...
Click to expand...
Click to collapse
didnt search the forum but i think the internet is more vast then this forum and second thing i saw a pic on this site of a self edited ROM on Emulator Device
You can edit the Microsoft ROM images they provide for use in their emulators but there is no way to take a device specific file an emulate it unfortunately.
neonkoala said:
You can edit the Microsoft ROM images they provide for use in their emulators but there is no way to take a device specific file an emulate it unfortunately.
Click to expand...
Click to collapse
Then can i please know how can i edit it, using which software and required steps? Thnx.
Hello! I have an ME865 with ICS Leaked 4.0.4 and rooted. I tried to install both GTA's but they keep giving the same error: "xapk file validation failed". It's strange, this is a good phone, how can it not support these games? Is there a way to install it?
Thank you in advance
You can have a read of THIS thread and see if it helps.
Don't let me see any discussion of warez here though, or the thread will be closed and offenders dealt with.
1BadWolf said:
Just about any site found here should get you on the right path:
Brought to you but time and relative dimensions in space.
Click to expand...
Click to collapse
Okay, i found this Market Helper, it changes my device and makes it compatible, but before the purchase window there's an error. Will keep looking for methods... if anyone could install this please reply
ApriliaM3 said:
You can have a read of THIS thread and see if it helps.
Don't let me see any discussion of warez here though, or the thread will be closed and offenders dealt with.
Click to expand...
Click to collapse
But why would i need to "change" my location?
Agusfn said:
Okay, i found this Market Helper, it changes my device and makes it compatible, but before the purchase window there's an error. Will keep looking for methods... if anyone could install this please reply
But why would i need to "change" my location?
Click to expand...
Click to collapse
You may need to "change" your location because some apps are only available in select locations (I don't know why). If you know which device(s) is/are supported by the game's developer you can try spoofing your phone model using the method found here:
http://forum.xda-developers.com/showthread.php?t=1468269
Brought to you but time and relative dimensions in space.
I have an old phone that uses Android 2.x, I think froyo or gingerbread. I want to download AFWall+ which is a firewall application that's the successor to DroidWall. The problem is the most recent version no longer supports the Android version used by my old phone. The app's details are here (I can't make it a hyperlink because I don't have 10 posts):
Code:
https://play.google.com/store/apps/details?id=dev.ukanth.ufirewall&hl=en
The relevant part says:
- Supports 4.x ,5.x and 6.x (for 2.x support use 1.3.4.1 version)
Click to expand...
Click to collapse
But the problem is I don't know how to get the 1.3.4.1 version and verify it is the legitimate version. There are a lot of websites that offer downloads for older versions of apks but they could inject anything they want in them couldn't they?
I would ask the developer in his thread what is the proper way to go about this but as I mentioned I don't meet the post requirements at the moment.
Thanks for any help you can offer.
agenda21 said:
I have an old phone that uses Android 2.x, I think froyo or gingerbread. I want to download AFWall+ which is a firewall application that's the successor to DroidWall. The problem is the most recent version no longer supports the Android version used by my old phone. The app's details are here (I can't make it a hyperlink because I don't have 10 posts):
Code:
https://play.google.com/store/apps/details?id=dev.ukanth.ufirewall&hl=en
The relevant part says:
But the problem is I don't know how to get the 1.3.4.1 version and verify it is the legitimate version. There are a lot of websites that offer downloads for older versions of apks but they could inject anything they want in them couldn't they?
I would ask the developer in his thread what is the proper way to go about this but as I mentioned I don't meet the post requirements at the moment.
Thanks for any help you can offer.
Click to expand...
Click to collapse
use this google search to find it.
i saw it on several sites, but cant post the links because they contain warez.
edit,
ha, im an idiot, i didnt read your whole post. yea, im not sure how you would verify.
maybe mention the dev here and he may come. @devsnamehere <-- thats how to mention someone.
bweN diorD said:
yea, im not sure how you would verify.
maybe mention the dev here and he may come. @devsnamehere <-- thats how to mention someone.
Click to expand...
Click to collapse
Thanks.
@ukanth can you tell me how to obtain and verify version 1.3.4.1?
agenda21 said:
Thanks.
@ukanth can you tell me how to obtain and verify version 1.3.4.1?
Click to expand...
Click to collapse
I thought f-droid builds still pointing to 1.3.4.1. I will upload in OP of my thread. Thanks !
ukanth said:
I thought f-droid builds still pointing to 1.3.4.1. I will upload in OP of my thread. Thanks !
Click to expand...
Click to collapse
@ukanth Sorry to bother you again but I can't find version 1.3.4.1 in your thread. Did you ever get a chance to post it somewhere? I can get it from a 3rd party website but I just need you to give me the hashes of the packages so I don't install something that's trojaned. I'm a computer programmer but I don't know much about phones, so please keep that in mind if you have special instructions. Thanks
agenda21 said:
@ukanth Sorry to bother you again but I can't find version 1.3.4.1 in your thread. Did you ever get a chance to post it somewhere? I can get it from a 3rd party website but I just need you to give me the hashes of the packages so I don't install something that's trojaned. I'm a computer programmer but I don't know much about phones, so please keep that in mind if you have special instructions. Thanks
Click to expand...
Click to collapse
@agenda21, Can you try this and let me know, this I found in my backup's. If it doesn't work, then I will build one using the old source and update it.
https://www.dropbox.com/s/c3g4lqzbltbuxfq/dev.ukanth.ufirewall-171.apk?dl=0
I raised a request in f-droid to restore the old version https://gitlab.com/fdroid/fdroiddata/issues/362 . Lets see.
Hi there,
I am working with a company that developed an SDK that offers an easy to deploy end to end encryption for mobile app developers and wanted to get some of you guys to test it with us (we are out of beta now). So what is the best place for me put a post about it?
Thanks,
M
appsecurity said:
Hi there,
I am working with a company that developed an SDK that offers an easy to deploy end to end encryption for mobile app developers and wanted to get some of you guys to test it with us (we are out of beta now). So what is the best place for me put a post about it?
Thanks,
M
Click to expand...
Click to collapse
Hello,
Try posting your query in the App Development forum, you maybe able to recieve help from people willing to test.
-Vatsal
Hi Guys,
I am new to Android (a noob) - Started with flashing some custom ROMs on my devices and i am bothered by the security of my device, although android is open source, is it possible that a custom ROM is bugged to steal your personal or financial information? I don't have any experience with android development and i don't have time to jump into Android development so even if the ROM is open source i wont be going through the code to check for leaks or potential built-in hacks.
Basically my question is, is it safe to install Unofficial ROMs such as CM unofficial? I understand, the majority of apps store sensitive data on device in encrypted way but still, i don't think it will be hard to just modify the ROM to develop a built-in key-logger OR read username/password from a username/password fields while user is typing using an on-screen keyboard, save it as LOG file and when connected to the internet, send it to the 'unknown' source. I can see so many possibilities, the user wont even have a clue that they are sharing data. it is like Microsoft making windows Open Source and people making their own versions of Windows and users installing them on thier PCs.
Please help me understand - How safe are our devices when running on custom ROMs from developers we don't even know (no disrespect to any dev, all this amazing work is appriciated, I just want to understand the security of android - Please help me understand as after flashing custom ROMs on my devices i am avoiding installation of sensitive apps or even using chrome to type my passwords) - am i paranoid ?
Cheers
It's entirely possible that a malicious custom ROM could steal your data (or worse), and there's really no technical way to mitigate it. You're implicitly trusting the developer of a ROM by flashing it. All you can really do is make sure that whatever ROM you choose is from a well-known, trusted developer.
aliusman999 said:
Hi Guys,
I am new to Android (a noob) - Started with flashing some custom ROMs on my devices and i am bothered by the security of my device, although android is open source, is it possible that a custom ROM is bugged to steal your personal or financial information? I don't have any experience with android development and i don't have time to jump into Android development so even if the ROM is open source i wont be going through the code to check for leaks or potential built-in hacks.
Basically my question is, is it safe to install Unofficial ROMs such as CM unofficial? I understand, the majority of apps store sensitive data on device in encrypted way but still, i don't think it will be hard to just modify the ROM to develop a built-in key-logger OR read username/password from a username/password fields while user is typing using an on-screen keyboard, save it as LOG file and when connected to the internet, send it to the 'unknown' source. I can see so many possibilities, the user wont even have a clue that they are sharing data. it is like Microsoft making windows Open Source and people making their own versions of Windows and users installing them on thier PCs.
Please help me understand - How safe are our devices when running on custom ROMs from developers we don't even know (no disrespect to any dev, all this amazing work is appriciated, I just want to understand the security of android - Please help me understand as after flashing custom ROMs on my devices i am avoiding installation of sensitive apps or even using chrome to type my passwords) - am i paranoid ?
Cheers
Click to expand...
Click to collapse
You are paranoid but that's good!
Yes we are trusting the devs (or Samsung et al with stock) AND hopefully smart coders who regularly check the code (but I suspect checking doesn't happen a lot!). You can use a firewall/packet sniffer to check what servers your phone is connecting to and see (some) of the data being sent to reduce your risk and put your mind at ease. But still it's no guarantee, as I understand it (I'm no expert!).
---
trainsuit said:
If you get a stock android you are also trusting the developer. Just look at these lenovo laptops which had malware served on their stock windows versions. Best is to always start clean when buying any form of product.
Click to expand...
Click to collapse
That's true, but how do you define ”clean”? In theory, you could build AOSP for your device yourself so you're only trusting Google, but that's completely impractical for most people. If you just switch from stock to someone else's custom ROM, you're just changing who you're trusting.
---
Perhaps it's a silly question but I do it: do you think that a XDA Senior Member with one or two thousand of thanks is reliable?
Bach_J said:
Perhaps it's a silly question but I do it: do you think that a XDA Senior Member with one or two thousand of thanks is reliable?
Click to expand...
Click to collapse
Another question for you: if a ROM has malicious code that send personal information to unknown servers, is using a firewall like AFWall+ twhich blocks all system apps sufficient to prevent this malicious ROM to stole data?
Thanks
Bach_J said:
Perhaps it's a silly question but I do it: do you think that a XDA Senior Member with one or two thousand of thanks is reliable?
Click to expand...
Click to collapse
Probably.
Bach_J said:
Another question for you: if a ROM has malicious code that send personal information to unknown servers, is using a firewall like AFWall+ twhich blocks all system apps sufficient to prevent this malicious ROM to stole data?
Thanks
Click to expand...
Click to collapse
No, a custom ROM could make data look like it's coming from any app it wants, or just bypass the firewall completely.
josephcsible said:
No, a custom ROM could make data look like it's coming from any app it wants, or just bypass the firewall completely.
Click to expand...
Click to collapse
Alternatively if the device is on your own network you could wireshark it using a computer and monitor IP addresses that the device attempts to connect to.
LyricalMagical said:
Alternatively if the device is on your own network you could wireshark it using a computer and monitor IP addresses that the device attempts to connect to.
Click to expand...
Click to collapse
This is helpful but not perfect. There's a bunch of ways to stealthily exfiltrate data over a monitored network, and don't forget a malicious ROM might only do its dirty work over cell and not Wi-Fi for this very reason.
josephcsible said:
This is helpful but not perfect. There's a bunch of ways to stealthily exfiltrate data over a monitored network, and don't forget a malicious ROM might only do its dirty work over cell and not Wi-Fi for this very reason.
Click to expand...
Click to collapse
I agree with you it's not a perfect solution; this question is sort of like asking if you can trust someone who has a root account to your computer when you cannot see what they are doing, it's an incredibly disadvantaged situation from the start.
LyricalMagical said:
I agree with you it's not a perfect solution; this question is sort of like asking if you can trust someone who has a root account to your computer when you cannot see what they are doing, it's an incredibly disadvantaged situation from the start.
Click to expand...
Click to collapse
I don't want to flash custom ROMs anymore! :crying:
It can be very dangerous! Or am I paranoid and I can trust xda developers?
Bach_J said:
I don't want to flash custom ROMs anymore! :crying:
It can be very dangerous! Or am I paranoid and I can trust xda developers?
Click to expand...
Click to collapse
Remember, everything I've been saying is reasons not to flash a ROM unless you trust the dev. None of it is saying that devs aren't trustworthy. I don't know of a single instance when a well-respected XDA member's ROM turned out to be malicious.
josephcsible said:
Remember, everything I've been saying is reasons not to flash a ROM unless you trust the dev. None of it is saying that devs aren't trustworthy. I don't know of a single instance when a well-respected XDA member's ROM turned out to be malicious.
Click to expand...
Click to collapse
Thank you for clarifying that but the question comes once more: how to recognize a well-respected XDA member? With the number of thanks? It is obvious that if the smartphone you are interested in is not so famous, there will be few comments on custom ROMs, too. So, how to evaluate the reliability of a xda dev who is developing ROM for not-well-known devices?
Are ROMs in Original development Section trustworthy?
Bach_J said:
Thank you for clarifying that but the question comes once more: how to recognize a well-respected XDA member? With the number of thanks? It is obvious that if the smartphone you are interested in is not so famous, there will be few comments on custom ROMs, too. So, how to evaluate the reliability of a xda dev who is developing ROM for not-well-known devices?
Are ROMs in Original development Section trustworthy?
Click to expand...
Click to collapse
Number of thanks can hardly tell that a dev is reliable or not(in some cases it can), rather it's the quality of their work and their expertise on the related topics that could clarify their position a bit. the recognized contributors, recognized developers, recognized themers you should look at cause
these are given to a member after being checked and passed by moderaters here on XDA. So they are pretty much reliable guys. in cases where there are no recognized developers and hardly any comments. you will have to check and find out yourself
1. ask the dev if he has tested the ROM himself?
2. how did he compiled the ROM? is it a port or just a modified copy of another ROM or a build from source.
3. check the link of the download, if it's to some survey site or ask for a password, stay away from it.
4. if you trust the download link, then download scan with antivirus and unzip the file.
5. generally I look inside app if there are apps which I don't trust and I remove them, then check build.prop, init.d folders. basic things to look for is any references of some other website/ports in between codes. if you're more paranoid you can check bin folder as well and every other you want.
6.don't install the ROM simply Root and debloat.
billysam said:
Number of thanks can hardly tell that a dev is reliable or not(in some cases it can), rather it's the quality of their work and their expertise on the related topics that could clarify their position a bit. the recognized contributors, recognized developers, recognized themers you should look at cause
these are given to a member after being checked and passed by moderaters here on XDA. So they are pretty much reliable guys. in cases where there are no recognized developers and hardly any comments. you will have to check and find out yourself
1. ask the dev if he has tested the ROM himself?
2. how did he compiled the ROM? is it a port or just a modified copy of another ROM or a build from source.
3. check the link of the download, if it's to some survey site or ask for a password, stay away from it.
4. if you trust the download link, then download scan with antivirus and unzip the file.
5. generally I look inside app if there are apps which I don't trust and I remove them, then check build.prop, init.d folders. basic things to look for is any references of some other website/ports in between codes. if you're more paranoid you can check bin folder as well and every other you want.
6.don't install the ROM simply Root and debloat.
Click to expand...
Click to collapse
Thanks for the complete explanation!
billysam said:
Number of thanks can hardly tell that a dev is reliable or not(in some cases it can), rather it's the quality of their work and their expertise on the related topics that could clarify their position a bit. the recognized contributors, recognized developers, recognized themers you should look at cause
these are given to a member after being checked and passed by moderaters here on XDA. So they are pretty much reliable guys. in cases where there are no recognized developers and hardly any comments. you will have to check and find out yourself
1. ask the dev if he has tested the ROM himself?
2. how did he compiled the ROM? is it a port or just a modified copy of another ROM or a build from source.
3. check the link of the download, if it's to some survey site or ask for a password, stay away from it.
4. if you trust the download link, then download scan with antivirus and unzip the file.
5. generally I look inside app if there are apps which I don't trust and I remove them, then check build.prop, init.d folders. basic things to look for is any references of some other website/ports in between codes. if you're more paranoid you can check bin folder as well and every other you want.
6.don't install the ROM simply Root and debloat.
Click to expand...
Click to collapse
I've just unzipped ROM but I can't find what you said. I've only found build.prop and nothing else!
Here a screenshot:
Bach_J said:
I've just unzipped ROM but I can't find what you said. I've only found build.prop and nothing else!
Here a screenshot:
Click to expand...
Click to collapse
That's because lollipop and marshmallow ROM files are further zipped into system.new.dat files which needs another method to extract, https:\\forum.xda-developers.com/android/help/extract-dat-marshmallow-lollipop-easily-t3334117
Just a small correction. When going to aosp you I ly are trusting yourself as you can inspect everything you add and remove what you don't.
Now to add to your paranoia. A custom rom could be made that allows all apps root permission without the users knowing. Add in a Key logger and have e it all headed without you ever knowing. This is common is xiaomi and other china based devices.
Heck there are a few key parts in the playstore with built in Key loggers.
Heck most of the go apps send all their data to China. Things like their Keylogger files, screen recording and device usage. But mind you it is all legal