Android Reverse Engineering Skill

왜 쓰나요

핵심 기능

End-to-end workflow: pull APK → unpack → decompile → search → patch → repack → sign
Frida script scaffolding for runtime hooks
Smali patching with checksum-safe repack
Built-in checklists for common targets (cert pinning, root detection)
Pairs with a bin/ toolchain bootstrap

라이브 데모

실제 사용 모습

android-reverse-engineering-skill.replay ▶ 준비됨

0/0

설치

클라이언트 선택

~/Library/Application Support/Claude/claude_desktop_config.json · Windows: %APPDATA%\Claude\claude_desktop_config.json

{
  "mcpServers": {
    "android-reverse-engineering-skill": {
      "command": "git",
      "args": [
        "clone",
        "https://github.com/SimoneAvogadro/android-reverse-engineering-skill",
        "~/.claude/skills/android-reverse-engineering-skill"
      ],
      "_inferred": true
    }
  }
}

Claude Desktop → Settings → Developer → Edit Config 열기. 저장 후 앱 재시작.

~/.cursor/mcp.json · .cursor/mcp.json

{
  "mcpServers": {
    "android-reverse-engineering-skill": {
      "command": "git",
      "args": [
        "clone",
        "https://github.com/SimoneAvogadro/android-reverse-engineering-skill",
        "~/.claude/skills/android-reverse-engineering-skill"
      ],
      "_inferred": true
    }
  }
}

Cursor는 Claude Desktop과 동일한 mcpServers 스키마 사용. 프로젝트 설정이 전역보다 우선.

VS Code → Cline → MCP Servers → Edit

{
  "mcpServers": {
    "android-reverse-engineering-skill": {
      "command": "git",
      "args": [
        "clone",
        "https://github.com/SimoneAvogadro/android-reverse-engineering-skill",
        "~/.claude/skills/android-reverse-engineering-skill"
      ],
      "_inferred": true
    }
  }
}

Cline 사이드바의 MCP Servers 아이콘 클릭 후 "Edit Configuration" 선택.

~/.codeium/windsurf/mcp_config.json

{
  "mcpServers": {
    "android-reverse-engineering-skill": {
      "command": "git",
      "args": [
        "clone",
        "https://github.com/SimoneAvogadro/android-reverse-engineering-skill",
        "~/.claude/skills/android-reverse-engineering-skill"
      ],
      "_inferred": true
    }
  }
}

Claude Desktop과 같은 형식. Windsurf 재시작 후 적용.

~/.continue/config.json

{
  "mcpServers": [
    {
      "name": "android-reverse-engineering-skill",
      "command": "git",
      "args": [
        "clone",
        "https://github.com/SimoneAvogadro/android-reverse-engineering-skill",
        "~/.claude/skills/android-reverse-engineering-skill"
      ]
    }
  ]
}

Continue는 맵이 아닌 서버 오브젝트 배열 사용.

~/.config/zed/settings.json

{
  "context_servers": {
    "android-reverse-engineering-skill": {
      "command": {
        "path": "git",
        "args": [
          "clone",
          "https://github.com/SimoneAvogadro/android-reverse-engineering-skill",
          "~/.claude/skills/android-reverse-engineering-skill"
        ]
      }
    }
  }
}

context_servers에 추가. 저장 시 Zed가 핫 리로드.

claude mcp add android-reverse-engineering-skill -- git clone https://github.com/SimoneAvogadro/android-reverse-engineering-skill ~/.claude/skills/android-reverse-engineering-skill

한 줄 명령. claude mcp list로 확인, claude mcp remove로 제거.

사용 사례

실전 활용법: Android Reverse Engineering Skill

Bypass cert pinning on a test app for MITM analysis

👤 Security researchers (with permission!) ⏱ ~15 min intermediate

언제 쓸까: You need to inspect a Flutter/OkHttp app's traffic and pinning blocks Burp.

사전 조건

Server/skill installed and authenticated — See repo README

흐름

Identify pinning

Decompile target.apk and find all references to TrustManager / CertificatePinner / Flutter's HttpClient.✓ 복사됨

→ List of hooks to patch
Patch + Frida

Generate a Frida script that no-ops checkServerTrusted across both Java and Flutter paths.✓ 복사됨

→ Frida .js + run command

결과: Working MITM channel on a test target you own.

함정

Reversing apps you don't have rights to is illegal in most jurisdictions. The skill assumes you've documented authorization. — Reversing apps you don't have rights to is illegal in most jurisdictions. The skill assumes you've documented authorization.

비용 및 제한

운영 비용

API 쿼터: See provider docs for rate limits
호출당 토큰: Varies by tool
금액: See repo README for pricing details
팁: Cache tool results and avoid repeated identical calls.

보안

권한, 시크릿, 파급범위

자격 증명 저장: Use environment variables; never commit secrets

데이터 외부 송신: Tool calls go to the provider's API as documented

문제 해결

자주 발생하는 오류와 해결

apktool fails to unpack

Use the latest apktool (≥2.9). Older versions miss new resource tables.

확인: apktool --version ≥ 2.9

repack signs but won't install

Use uber-apk-signer with --allow-resign and target the right SDK level.

확인: adb install -r app-signed.apk

대안