Protect an ionic based android application android manifest file permission

271 views Asked by At

I have developed an android application using ionic angular. To protect from tampering, I have implemented obfuscation. In the VAPT testing, the application is reverse engineered and adding new permission in android manifest XML and build the apk. After doing this the application is working as expected. My question is how to protect the androidmanifest.xml is not being inject?

1

There are 1 answers

2
AudioBubble On

This is actually an Android-based question and not an Ionic specific question.

However, I imagine you would need to verify the signing signature at run time.

https://www.airpair.com/android/posts/adding-tampering-detection-to-your-android-app