com.scottyab.rootbeer

Class RootBeer

java.lang.Object

com.scottyab.rootbeer.RootBeer

public class RootBeer
extends java.lang.Object

A simple root checker that gives an *indication* if the device is rooted or not. Disclaimer: **root==god**, so there's no 100% way to check for root.

Constructor Summary

Constructors

Constructor and Description
RootBeer(android.content.Context context)

Method Summary

Modifier and Type	Method and Description
boolean	canLoadNativeLibrary() Checks if it is possible to load our native library
boolean	checkForBinary(java.lang.String filename)
boolean	checkForBusyBoxBinary() Checks various (Const.suPaths) common locations for the busybox binary (a well know root level program)
boolean	checkForDangerousProps() Checks for several system properties for
boolean	checkForMagiskBinary() Checks various (Const.suPaths) common locations for the magisk binary (a well know root level program)
boolean	checkForNativeLibraryReadAccess() Checks if device has ReadAccess to the Native Library Precondition: canLoadNativeLibrary() ran before this and returned true Description: RootCloak automatically blocks read access to the Native Libraries, however allows for them to be loaded into memory.
boolean	checkForRootNative() Native checks are often harder to cloak/trick so here we call through to our native root checker
boolean	checkForRWPaths() When you're root you can change the permissions on common system directories, this method checks if any of these patha Const.pathsThatShouldNotBeWrtiable are writable.
boolean	checkForSuBinary() Checks various (Const.suPaths) common locations for the SU binary
boolean	checkSuExists() A variation on the checking for SU, this attempts a 'which su'
boolean	detectPotentiallyDangerousApps() Using the PackageManager, check for a list of well known apps that require root.
boolean	detectPotentiallyDangerousApps(java.lang.String[] additionalDangerousApps) Using the PackageManager, check for a list of well known apps that require root.
boolean	detectRootCloakingApps() Using the PackageManager, check for a list of well known root cloak apps.
boolean	detectRootCloakingApps(java.lang.String[] additionalRootCloakingApps) Using the PackageManager, check for a list of well known root cloak apps.
boolean	detectRootManagementApps() Using the PackageManager, check for a list of well known root apps.
boolean	detectRootManagementApps(java.lang.String[] additionalRootManagementApps) Using the PackageManager, check for a list of well known root apps.
boolean	detectTestKeys() Release-Keys and Test-Keys has to do with how the kernel is signed when it is compiled.
boolean	isRooted() Run all the checks.
boolean	isRootedWithoutBusyBoxCheck() Run all the checks apart from checking for the busybox binary.
void	setLogging(boolean logging)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

RootBeer

public RootBeer(android.content.Context context)

Method Detail

isRooted

public boolean isRooted()

Run all the checks. To run the same check but without looking for the busybox binary to avoid a false positive for certain devices please see isRootedWithoutBusyBoxCheck

Returns:

true, we think there's a good *indication* of root | false good *indication* of no root (could still be cloaked)

isRootedWithoutBusyBoxCheck

public boolean isRootedWithoutBusyBoxCheck()

Run all the checks apart from checking for the busybox binary. This is because it can sometimes be a false positive as some manufacturers leave the binary in production builds.

Returns:

true, we think there's a good *indication* of root | false good *indication* of no root (could still be cloaked)

detectTestKeys

public boolean detectTestKeys()

Release-Keys and Test-Keys has to do with how the kernel is signed when it is compiled. Test-Keys means it was signed with a custom key generated by a third-party developer.

Returns:

true if signed with Test-keys

detectRootManagementApps

public boolean detectRootManagementApps()

Using the PackageManager, check for a list of well known root apps. @link {Const.knownRootAppsPackages}

Returns:

true if one of the apps it's installed

detectRootManagementApps

public boolean detectRootManagementApps(java.lang.String[] additionalRootManagementApps)

Using the PackageManager, check for a list of well known root apps. @link {Const.knownRootAppsPackages}

Parameters:

additionalRootManagementApps - - array of additional packagenames to search for

Returns:

true if one of the apps it's installed

detectPotentiallyDangerousApps

public boolean detectPotentiallyDangerousApps()

Using the PackageManager, check for a list of well known apps that require root. @link {Const.knownRootAppsPackages}

Returns:

true if one of the apps it's installed

detectPotentiallyDangerousApps

public boolean detectPotentiallyDangerousApps(java.lang.String[] additionalDangerousApps)

Using the PackageManager, check for a list of well known apps that require root. @link {Const.knownRootAppsPackages}

Parameters:

additionalDangerousApps - - array of additional packagenames to search for

Returns:

true if one of the apps it's installed

detectRootCloakingApps

public boolean detectRootCloakingApps()

Using the PackageManager, check for a list of well known root cloak apps. @link {Const.knownRootAppsPackages} and checks for native library read access

Returns:

true if one of the apps it's installed

detectRootCloakingApps

public boolean detectRootCloakingApps(java.lang.String[] additionalRootCloakingApps)

Using the PackageManager, check for a list of well known root cloak apps. @link {Const.knownRootAppsPackages}

Parameters:

additionalRootCloakingApps - - array of additional packagenames to search for

Returns:

true if one of the apps it's installed

checkForSuBinary

public boolean checkForSuBinary()

Checks various (Const.suPaths) common locations for the SU binary

Returns:

true if found

checkForMagiskBinary

public boolean checkForMagiskBinary()

Checks various (Const.suPaths) common locations for the magisk binary (a well know root level program)

Returns:

true if found

checkForBusyBoxBinary

public boolean checkForBusyBoxBinary()

Checks various (Const.suPaths) common locations for the busybox binary (a well know root level program)

Returns:

true if found

checkForBinary

public boolean checkForBinary(java.lang.String filename)

Parameters:

filename - - check for this existence of this file

Returns:

true if found

setLogging

public void setLogging(boolean logging)

Parameters:

logging - - set to true for logging

checkForDangerousProps

public boolean checkForDangerousProps()

Checks for several system properties for

Returns:

- true if dangerous props are found

checkForRWPaths

public boolean checkForRWPaths()

When you're root you can change the permissions on common system directories, this method checks if any of these patha Const.pathsThatShouldNotBeWrtiable are writable.

Returns:

true if one of the dir is writable

checkSuExists

public boolean checkSuExists()

A variation on the checking for SU, this attempts a 'which su'

Returns:

true if su found

checkForNativeLibraryReadAccess

public boolean checkForNativeLibraryReadAccess()

Checks if device has ReadAccess to the Native Library Precondition: canLoadNativeLibrary() ran before this and returned true Description: RootCloak automatically blocks read access to the Native Libraries, however allows for them to be loaded into memory. This check is an indication that RootCloak is installed onto the device.

Returns:

true if device has Read Access | false if UnsatisfiedLinkError Occurs

canLoadNativeLibrary

public boolean canLoadNativeLibrary()

Checks if it is possible to load our native library

Returns:

true if we can | false if not

checkForRootNative

public boolean checkForRootNative()

Native checks are often harder to cloak/trick so here we call through to our native root checker

Returns:

true if we found su | false if not, or the native library could not be loaded / accessed