Recovering the Java code

- [Instructor] A key issue to keep in mind…when developing Android apps,…is that that their manifest resources…and Java source code are all recoverable…from the APK and therefore should not contain…secrets or sensitive processing functions.…We can use a tool called Jadx to extract the source files…from an APK.…Jadx can be downloaded from the Github site…as a ZIP archive.…I've downloaded this and extracted it.…So let's take a look.…The Jadx gui batch file and executable…are in the bin folder.…I can start Jadx by double clicking the bat file.…

We've now got the user interface up…and can open an APK file.…I'll load a commercial mobile app I've downloaded,…the Vodafone Australia text reader application.…Jadx shows two top level folders in the left pane.…A source folder and a resources folder.…I'll firstly look at the resources folder.…When I expand it, I see that the manifest file is listed.…If I click on that, I can see the XMR source.…The manifest file is a good place to start exploring…the characteristics of the application.…