Android App Penetration Testing & Frida Hooks

Essential Frida Scripts: Automating Android Crypto API Hooking for Faster Analysis

By Antigravity Research Published May 29, 2026 ⏱️ 10 Min Read
Google AdSense Native Placement - Horizontal Top-Post banner

Introduction

In the realm of Android application penetration testing and reverse engineering, understanding how an application handles cryptographic operations is paramount. Sensitive data like user credentials, payment information, or proprietary secrets are almost always encrypted before storage or transmission. Manually analyzing these cryptographic flows by static analysis alone can be incredibly time-consuming, especially with obfuscated codebases. This is where dynamic analysis with Frida, a powerful dynamic instrumentation toolkit, becomes indispensable. This article provides an expert-level guide to building reusable Frida scripts for automating the hooking of common Android Java Cryptography Architecture (JCA) APIs, enabling faster and more accurate crypto analysis.

Prerequisites

Before diving into the scripts, ensure you have the following setup:

  • An Android device or emulator with root access.
  • Frida server running on the Android device.
  • Frida-tools installed on your host machine (`pip install frida-tools`).
  • Basic understanding of Java and JavaScript.
  • ADB (Android Debug Bridge) configured and working.

To verify your Frida setup, run `frida-ps -U` to list processes on your connected device. If it works, you’re good to go.

Understanding Android’s Java Cryptography Architecture (JCA)

Android applications primarily utilize the Java Cryptography Architecture (JCA) for cryptographic operations. Key classes and their roles:

  • javax.crypto.Cipher: The core class for encryption and decryption.
  • java.security.MessageDigest: Used for one-way hashing functions (e.g., SHA-256).
  • javax.crypto.KeyGenerator: For generating symmetric keys.
  • javax.crypto.spec.SecretKeySpec: Represents a secret key in a provider-independent fashion.
  • javax.crypto.spec.IvParameterSpec: Represents an Initialization Vector (IV).
  • java.security.spec.AlgorithmParameterSpec: Interface for algorithm parameters.

By hooking methods within these classes, we can intercept critical information such as encryption keys, IVs, algorithms, modes, padding schemes, and the actual plaintext/ciphertext or hashed data.

Building a Reusable Crypto Hooking Script

Our goal is to create a single, comprehensive Frida script that can detect and log various crypto operations. We’ll focus on `Cipher`, `MessageDigest`, `SecretKeySpec`, and `IvParameterSpec` for maximum coverage.

Helper Function: Bytes to Hex

Cryptographic inputs and outputs are often byte arrays. A utility function to convert these to a readable hexadecimal string is essential.

function bytesToHex(bytes) {    if (!bytes) return "";    return Array.from(bytes, function(byte) {        return ('0' + (byte & 0xFF).toString(16)).slice(-2);    }).join('');}

Hooking `javax.crypto.Cipher`

The `Cipher` class is central. We need to hook its `init` methods to get configuration and its `update`/`doFinal` methods to get data.

Hooking `Cipher.init`

Cipher.init overloads reveal the operation mode (encrypt/decrypt), the key, and often an IV or algorithm parameters. We’ll target common overloads:

  • init(int opmode, java.security.Key key)
  • init(int opmode, java.security.Key key, java.security.spec.AlgorithmParameterSpec params)
  • init(int opmode, java.security.Key key, java.security.AlgorithmParameters params)
Java.perform(function() {    var Cipher = Java.use('javax.crypto.Cipher');    Cipher.init.overload('int', 'java.security.Key').implementation = function(opmode, key) {        var opmodeStr = (opmode == 1) ? "ENCRYPT_MODE" : ((opmode == 2) ? "DECRYPT_MODE" : "UNKNOWN");        console.warn("n[*] Cipher.init(Mode: " + opmodeStr + ", Key Algorithm: " + key.getAlgorithm() + ", Key Format: " + key.getFormat() + ")");        console.log("tKey (Hex): " + bytesToHex(key.getEncoded()));        // Call original method        return this.init(opmode, key);    };    Cipher.init.overload('int', 'java.security.Key', 'java.security.spec.AlgorithmParameterSpec').implementation = function(opmode, key, params) {        var opmodeStr = (opmode == 1) ? "ENCRYPT_MODE" : ((opmode == 2) ? "DECRYPT_MODE" : "UNKNOWN");        var paramType = params.$className;        console.warn("n[*] Cipher.init(Mode: " + opmodeStr + ", Key Algorithm: " + key.getAlgorithm() + ", Params Type: " + paramType + ")");        console.log("tKey (Hex): " + bytesToHex(key.getEncoded()));        if (paramType === 'javax.crypto.spec.IvParameterSpec') {            console.log("tIV (Hex): " + bytesToHex(params.getIV()));        } else if (paramType === 'java.security.spec.GCMParameterSpec') {            console.log("tGCM Tag Len: " + params.getTLen() + ", GCM IV (Hex): " + bytesToHex(params.getIV()));        }        // Call original method        return this.init(opmode, key, params);    };    // Add more overloads for Cipher.init as needed, e.g., with AlgorithmParameters});

Hooking `Cipher.update` and `Cipher.doFinal`

These methods handle the actual data processing. We’ll log the input (plaintext for encrypt mode, ciphertext for decrypt mode) and output.

Java.perform(function() {    // ... (Cipher.init hooks) ...    var Cipher = Java.use('javax.crypto.Cipher');    Cipher.update.overload('[B').implementation = function(input) {        var output = this.update(input);        console.log("[+] Cipher.update Input (Hex): " + bytesToHex(input));        if (output) {            console.log("[+] Cipher.update Output (Hex): " + bytesToHex(output));        }        return output;    };    Cipher.doFinal.overload('[B').implementation = function(input) {        var output = this.doFinal(input);        console.log("[+] Cipher.doFinal Input (Hex): " + bytesToHex(input));        if (output) {            console.log("[+] Cipher.doFinal Output (Hex): " + bytesToHex(output));        }        return output;    };    Cipher.doFinal.overload('[B', 'int', 'int').implementation = function(input, offset, len) {        var output = this.doFinal(input, offset, len);        console.log("[+] Cipher.doFinal Input (Hex, offset: " + offset + ", len: " + len + "): " + bytesToHex(input.slice(offset, offset + len)));        if (output) {            console.log("[+] Cipher.doFinal Output (Hex): " + bytesToHex(output));        }        return output;    };});

Hooking `java.security.MessageDigest`

For hashing, `MessageDigest` is key. We’ll intercept `update` to see the input and `digest` for the final hash.

Java.perform(function() {    // ... (Cipher hooks) ...    var MessageDigest = Java.use('java.security.MessageDigest');    MessageDigest.update.overload('[B').implementation = function(input) {        console.log("[+] MessageDigest.update Input (Hex): " + bytesToHex(input));        return this.update(input);    };    MessageDigest.digest.overload().implementation = function() {        var result = this.digest();        console.warn("[**] MessageDigest.digest Result (Hex): " + bytesToHex(result));        return result;    };    MessageDigest.digest.overload('[B').implementation = function(input) {        console.log("[+] MessageDigest.digest Input (Hex): " + bytesToHex(input));        var result = this.digest(input);        console.warn("[**] MessageDigest.digest Result (Hex): " + bytesToHex(result));        return result;    };});

Hooking Key and IV Specification Classes

Sometimes, keys and IVs are constructed directly from byte arrays. Hooking `SecretKeySpec` and `IvParameterSpec` constructors can reveal these.

Java.perform(function() {    // ... (Cipher & MessageDigest hooks) ...    var SecretKeySpec = Java.use('javax.crypto.spec.SecretKeySpec');    SecretKeySpec.$init.overload('[B', 'java.lang.String').implementation = function(keyBytes, algorithm) {        this.$init(keyBytes, algorithm);        console.warn("n[***] SecretKeySpec Created (Algorithm: " + algorithm + ")");        console.log("tKey Bytes (Hex): " + bytesToHex(keyBytes));    };    var IvParameterSpec = Java.use('javax.crypto.spec.IvParameterSpec');    IvParameterSpec.$init.overload('[B').implementation = function(ivBytes) {        this.$init(ivBytes);        console.warn("n[***] IvParameterSpec Created");        console.log("tIV Bytes (Hex): " + bytesToHex(ivBytes));    };});

Putting it All Together: `crypto_monitor.js`

Combine all the above snippets into a single file, `crypto_monitor.js`:

/* crypto_monitor.js */function bytesToHex(bytes) {    if (!bytes) return "";    if (bytes.length === 0) return "";    return Array.from(bytes, function(byte) {        return ('0' + (byte & 0xFF).toString(16)).slice(-2);    }).join('');}Java.perform(function() {    console.log("[+] Frida Crypto Monitor Loaded");    // --- Hooking javax.crypto.Cipher ---    var Cipher = Java.use('javax.crypto.Cipher');    Cipher.init.overload('int', 'java.security.Key').implementation = function(opmode, key) {        var opmodeStr = (opmode == 1) ? "ENCRYPT_MODE" : ((opmode == 2) ? "DECRYPT_MODE" : "UNKNOWN_MODE");        console.warn("n[*] Cipher.init (Mode: " + opmodeStr + ", Key Algorithm: " + key.getAlgorithm() + ")");        console.log("tKey (Hex): " + bytesToHex(key.getEncoded()));        this.init(opmode, key);    };    Cipher.init.overload('int', 'java.security.Key', 'java.security.spec.AlgorithmParameterSpec').implementation = function(opmode, key, params) {        var opmodeStr = (opmode == 1) ? "ENCRYPT_MODE" : ((opmode == 2) ? "DECRYPT_MODE" : "UNKNOWN_MODE");        var paramType = params.$className;        console.warn("n[*] Cipher.init (Mode: " + opmodeStr + ", Key Algorithm: " + key.getAlgorithm() + ", Params Type: " + paramType + ")");        console.log("tKey (Hex): " + bytesToHex(key.getEncoded()));        if (paramType === 'javax.crypto.spec.IvParameterSpec') {            console.log("tIV (Hex): " + bytesToHex(params.getIV()));        } else if (paramType === 'java.security.spec.GCMParameterSpec') {            console.log("tGCM Tag Len: " + params.getTLen() + ", GCM IV (Hex): " + bytesToHex(params.getIV()));        }        this.init(opmode, key, params);    };    Cipher.update.overload('[B').implementation = function(input) {        var output = this.update(input);        console.log("[+] Cipher.update Input (Hex): " + bytesToHex(input));        if (output) { console.log("[+] Cipher.update Output (Hex): " + bytesToHex(output)); }        return output;    };    Cipher.update.overload('[B', 'int', 'int').implementation = function(input, offset, len) {        var output = this.update(input, offset, len);        console.log("[+] Cipher.update Input (Hex, offset: " + offset + ", len: " + len + "): " + bytesToHex(input.slice(offset, offset + len)));        if (output) { console.log("[+] Cipher.update Output (Hex): " + bytesToHex(output)); }        return output;    };    Cipher.doFinal.overload('[B').implementation = function(input) {        var output = this.doFinal(input);        console.log("[+] Cipher.doFinal Input (Hex): " + bytesToHex(input));        if (output) { console.log("[+] Cipher.doFinal Output (Hex): " + bytesToHex(output)); }        return output;    };    Cipher.doFinal.overload('[B', 'int', 'int').implementation = function(input, offset, len) {        var output = this.doFinal(input, offset, len);        console.log("[+] Cipher.doFinal Input (Hex, offset: " + offset + ", len: " + len + "): " + bytesToHex(input.slice(offset, offset + len)));        if (output) { console.log("[+] Cipher.doFinal Output (Hex): " + bytesToHex(output)); }        return output;    };    // --- Hooking java.security.MessageDigest ---    var MessageDigest = Java.use('java.security.MessageDigest');    MessageDigest.update.overload('[B').implementation = function(input) {        console.log("[+] MessageDigest.update Input (Hex): " + bytesToHex(input));        return this.update(input);    };    MessageDigest.digest.overload().implementation = function() {        var result = this.digest();        console.warn("[**] MessageDigest.digest Result (Hex): " + bytesToHex(result));        return result;    };    MessageDigest.digest.overload('[B').implementation = function(input) {        console.log("[+] MessageDigest.digest Input (Hex): " + bytesToHex(input));        var result = this.digest(input);        console.warn("[**] MessageDigest.digest Result (Hex): " + bytesToHex(result));        return result;    };    // --- Hooking Key and IV Spec classes ---    var SecretKeySpec = Java.use('javax.crypto.spec.SecretKeySpec');    SecretKeySpec.$init.overload('[B', 'java.lang.String').implementation = function(keyBytes, algorithm) {        this.$init(keyBytes, algorithm);        console.warn("n[***] SecretKeySpec Created (Algorithm: " + algorithm + ")");        console.log("tKey Bytes (Hex): " + bytesToHex(keyBytes));    };    var IvParameterSpec = Java.use('javax.crypto.spec.IvParameterSpec');    IvParameterSpec.$init.overload('[B').implementation = function(ivBytes) {        this.$init(ivBytes);        console.warn("n[***] IvParameterSpec Created");        console.log("tIV Bytes (Hex): " + bytesToHex(ivBytes));    };});

Execution and Interpretation

To use this script, first ensure `frida-server` is running on your Android device (e.g., `adb shell /data/local/tmp/frida-server &`). Then, on your host machine, execute Frida against your target application:

frida -U -f com.example.targetapp -l crypto_monitor.js --no-pause

Replace `com.example.targetapp` with the actual package name of the application you are testing. The `–no-pause` flag ensures the app starts immediately after Frida injects the script. As you interact with the application, Frida will print detailed cryptographic operations to your console.

Example Output Snippet:

[*] Cipher.init (Mode: ENCRYPT_MODE, Key Algorithm: AES, Params Type: javax.crypto.spec.IvParameterSpec)    Key (Hex): 0123456789abcdef0123456789abcdef    IV (Hex): fedcba9876543210fedcba9876543210[+] Cipher.update Input (Hex): 48656c6c6f2c20467269646121[+] Cipher.update Output (Hex): d4e0a9b2c3d4e5f6a7b8c9d0e1f2a3b4[**] MessageDigest.digest Result (Hex): 8d969eef6ecad3c29a3a629280e686cf0c3f5d5a86ce3c965e8efb65f042e2b3[***] SecretKeySpec Created (Algorithm: AES)    Key Bytes (Hex): aabbccddeeff00112233445566778899

This output clearly shows the algorithm, key, IV, plaintext (before encryption), and ciphertext. For hashing, it reveals the input (if hooked via `update`) and the final hash. Such detailed logs provide invaluable insight into an application’s cryptographic practices, helping you identify weak algorithms, hardcoded keys, or incorrect implementations.

Advanced Considerations

Handling Native Crypto APIs (JNI)

While this script focuses on Java JCA, many applications, especially those with performance-critical crypto or relying on third-party libraries (e.g., OpenSSL, BoringSSL), implement crypto in native code (C/C++). For these, you would use Frida’s `Interceptor.attach` to hook native functions directly. This often requires reverse engineering the native library to identify relevant function names or memory offsets. For instance, hooking `EVP_EncryptInit_ex` or `EVP_DecryptInit_ex` in OpenSSL could reveal similar details.

Dealing with Obfuscation

Obfuscation can rename classes and methods, making `Java.use(‘package.Class’)` ineffective. In such cases, you might need to:

  • Use `Java.enumerateLoadedClasses()` and string search for known method signatures or class patterns.
  • Dynamically enumerate methods of `Java.use(someClass)` to find potential crypto-related functions.
  • Identify the actual class/method names through static analysis (decompilation) first.

Automating Analysis

For large-scale analysis, consider piping Frida’s output to a Python script. This script can parse the logs, extract keys, IVs, and data, and then attempt to decrypt captured ciphertext using known algorithms, or compare hashes against known inputs. This significantly accelerates the process of verifying cryptographic integrity and identifying vulnerabilities.

Conclusion

Frida offers unparalleled capabilities for dynamic instrumentation, making it an essential tool for Android app penetration testers. By leveraging these detailed scripts for automating crypto API hooking, you can drastically reduce the time spent on manual analysis, gain deeper insights into an application’s data protection mechanisms, and uncover critical vulnerabilities related to improper cryptographic implementations. This proactive approach ensures a more thorough and efficient security assessment of Android applications.

Android Mobile Specs & Compare Directory

Are you researching mobile hardware properties, processor SoCs, GPU chipsets, or RAM configurations? Access our complete specs catalog to compare up to 5 devices side-by-side!

Compare Devices Specs →
Google AdSense Inline Placement - Content Footer banner
Tags: #Android Pentesting #API Hooking #Cryptography #Frida #Reverse Engineering

Related Technical Guides

Understanding & Exploiting JNI_OnLoad: A Frida-Powered Android Security Deep Dive

May 30, 2026

Frida Biometric Bypass: A Step-by-Step Guide to Circumventing Android Fingerprint & Face Locks

May 29, 2026

Beyond Basics: Developing Custom Frida Gadgets for Advanced Android Malware Analysis

May 30, 2026