Advertisement
metalx1000

CPCC App APK events reverse engineering

Jun 16th, 2023 (edited)
1,907
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
Bash 1.94 KB | None | 0 0
  1. #get the APK [Note that it is 70MB]
  2. #https://play.google.com/store/apps/datasafety?id=com.subsplashconsulting.s_TRHJMF&hl=en_US&gl=US
  3. #also note this app wants permissions for location, camera, contacts, and other it does not need
  4. #and according to google play this app collects data, including those above and more and
  5. #shares them with third parties
  6. https://m.apkpure.com/center-point-naples/com.subsplashconsulting.s_TRHJMF/download
  7.  
  8. #install the APK
  9. adb install cpcc.apk
  10.  
  11. #run the follow and then start the app and start browsing the app
  12. adb shell logcat|grep http
  13.  
  14. #notice that there is a lot of subsplash.com
  15. #narrow the search down with
  16. adb shell logcat|grep "subsplash.com"
  17.  
  18. #one interesting link is the "event-list"
  19. #it's json
  20. wget "https://feeds.subsplash.com/api/v1/event-list/a03aad55-5a0d-4f82-bf6d-bef7cac7c499" -qO-|jq .
  21.  
  22. #let's get just the urls listed in the json that are "events"
  23. wget "https://feeds.subsplash.com/api/v1/event-list/a03aad55-5a0d-4f82-bf6d-bef7cac7c499" -qO- |jq .|grep url|grep event|cut -d\" -f4
  24.  
  25. #Maybe just use jq to be neat about it
  26. wget "https://feeds.subsplash.com/api/v1/event-list/a03aad55-5a0d-4f82-bf6d-bef7cac7c499" -qO- |jq -r '.items[].actions[].url'
  27.  
  28. #ok, each one of those is more json,
  29. #but the urls within that are webpages
  30. #let's just loop through each one and open the url
  31.  
  32. eventlist="https://feeds.subsplash.com/api/v1/event-list/a03aad55-5a0d-4f82-bf6d-bef7cac7c499"
  33. wget "$eventlist" -qO- |jq -r '.items[].actions[].url'|while read event;
  34. do
  35.   url="$(wget -qO- "$event"|jq -r '.actionSheet.items[0].actions[].url')"
  36.   xdg-open "$url"
  37. done
  38.  
  39. #lets view it as a list
  40. wget "$eventlist" -qO- |jq -r '.items[]|(.title +","+  .actions[].url)'
  41.  
  42. #lets use that to select and open that event's page
  43. event="$(wget "$eventlist" -qO- |jq -r '.items[]|(.title +","+ .actions[].url +","+.date)'|fzf|cut -d\, -f2)"
  44.  
  45. url="$(wget -qO- "$event"|jq -r '.actionSheet.items[0].actions[].url')"
  46. xdg-open "$url"
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement