Jump to content

Is it possible to check file hashes of APK files?

Battousai1
 Share
Posted

Hi guys, I would like to check if it is possible to personally check APK file hashes.

 

So I am trying to download an APK file from APKMirror because an app is not available in my region. I know APKMirror is safe, but still there is something in me that wanted to check if the APK I am downloading is clean and safe and I came across one way to verify it which is by comparing file hashes. However, is it possible to compare the file hashes of the app from the Google Play against the APK from APKMirror without me having access to the APK file from Google Play?

According to APKMirror "We make sure that the cryptographic signatures for new versions of all previously published apps match the original ones, which means we know if uploaded APKs were signed by the real devs or someone pretending to be them"

But still, I would like to validate an APK file myself if possible.

So far, the only thing I have done was to check the APK file against VirusTotal, which I am not sure if helpful?

Link to comment
Share on other sites
Link to post
Share on other sites
Posted
On 1/17/2024 at 6:44 PM, Battousai1 said:

However, is it possible to compare the file hashes of the app from the Google Play against the APK from APKMirror without me having access to the APK file from Google Play?

I don't see how.  Be careful, I am now wary of apkpure.  If you go search for pandora there, and test the available software, it is not legitimate.  The name of the file is wrong, and it doesn't work.  So sometimes apkpure doesn't actually have the proper files available.

 

Windows has a program to check file signatures, which is added to the right-click menu when selecting files.

: JRE #1914 Siddarth Kara

How bad is e-waste?  Listen to that Joe Rogan episode.

 

"Now you get what you want, but do you want more?
- Bob Marley, Rastaman Vibration album 1976

 

Windows 11 will just force business to "recycle" "obscolete" hardware.  Microsoft definitely isn't bothered by this at all, and seems to want hardware produced just a few years ago to be considered obsolete.  They have also not shown any interest nor has any other company in a similar financial position, to help increase tech recycling whatsoever.  Windows 12 might be cloud-based and be a monthly or yearly fee.

 

Software suggestions


Just get f.lux [Link removed due to forum rules] so your screen isn't bright white at night, a golden orange in place of stark 6500K bluish white.

released in 2008 and still being improved.

 

Dark Reader addon for webpages.  Pick any color you want for both background and text (background and foreground page elements).  Enable the preview mode on desktop for Firefox and Chrome addon, by clicking the dark reader addon settings, Choose dev tools amd click preview mode.

 

NoScript or EFF's privacy badger addons can block many scripts and websites that would load and track you, possibly halving page load time!

 

F-droid is a place to install open-source software for android, Antennapod, RethinkDNS, Fennec which is Firefox with about:config, lots of performance and other changes available, mozilla KB has a huge database of what most of the settings do.  Most software in the repository only requires Android 5 and 6!

 

I recommend firewall apps (blocks apps) and dns filters (redirect all dns requests on android, to your choice of dns, even if overridden).  RethinkDNS is my pick and I set it to use pi-hole, installed inside Ubuntu/Debian, which is inside Virtualbox, until I go to a website, nothing at all connects to any other server.  I also use NextDNS.io to do the same when away from home wi-fi or even cellular!  I can even tether from cellular to any device sharing via wi-fi, and block anything with dns set to NextDNS, regardless if the device allows changing dns.  This style of network filtration is being overridden by software updates on some devices, forcing a backup dns provuder, such as google dns, when built in dns requests are not connecting.  Without a complete firewall setup, dns redirection itself is no longer always effective.

Link to comment
Share on other sites
Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing Programs, Apps and Websites

×