We at GO-JEK grew by 900X in last 18 months and we (the driver app team) had a difficult and unique problem to solve. The market in which our app runs have a huge number of hackers who sell modded (or tampered) version of our original apps to the drivers thereby hampering our business, trust and brand image.
Detecting modded Android apps is not a trivial job by any means. Most of the devices our driver app runs are also rooted devices making our job even more difficult. With root access, there are infinite ways for the modder to bypass any check you want to perform and remain undetected.
Anyone (individual developers or companies) would want to make their apps security tight enough and not get exploited. No one would want their premium features getting distributed for free in modded apps. No company would want modded apps to game their system and give unfair advantages to these users and ruin the trust of the original app users.
i) Understanding Android APK Structure
ii) Decompiling Android Apps For The Good
iii) Techniques For Detecting Tampered Apps
iv) Road Blocks: Root, Xposed & Magisk
v) Advanced Techniques Conquering Rooted Devices
vi) Hiding Your Implementation