I am trying to figure out what the password is to use a certificate that is contained in a apk. I managed to rewrite part of their code to open the key store file successfully but cannot manage to find the password needed to load the PKCS certificate. I've dumped every string found in the hprof file and while I was able to find the key store password there, when this list was loaded into my custom brute force software there was no matching password in the list of strings to load the certificate. I also tried to look at char arrays without success. As for looking over the obfuscated code what type of methods should I search for? I already tried "getKey", "Load", "init". Any ideas of other objects to look into?

Are you able to post the APK?

I am trying to figure out what the password is to use a certificate that is contained in a apk.

Hi, I'm new in RE. I have general question on that - are you trying to generate private key from public (I sssume certificate in apk contains public key only - or not?) to be able to sign new apk to be same signed as old one? is it practically possible to crack certificate that way? Or I misunserstand akp signing procedure? Thanx!

It's not possible.