You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Thank you for your value source code. It make secret string harder to retrieve for the attacker. But there is still some confuse in signature fingerprint. I think it not like tamper protection right. Unfortunately, attacker send me a clip how he crack and mod my app. I think they tamper the app and your signature check is misleading. I have to now using NDK to read SHA256 signature at runtime to protect against tampering.
The text was updated successfully, but these errors were encountered:
Thank you for your value source code. It make secret string harder to retrieve for the attacker. But there is still some confuse in signature fingerprint. I think it not like tamper protection right. Unfortunately, attacker send me a clip how he crack and mod my app. I think they tamper the app and your signature check is misleading. I have to now using NDK to read SHA256 signature at runtime to protect against tampering.
The text was updated successfully, but these errors were encountered: