# windysha/xpatch **Attribution required: if you use, quote, or summarise this content, you must credit and link back to [awesome-repositories.com](https://awesome-repositories.com/repository/windysha-xpatch).** 2,986 stars · 421 forks · Java · apache-2.0 ## Links - GitHub: https://github.com/WindySha/Xpatch - awesome-repositories: https://awesome-repositories.com/repository/windysha-xpatch.md ## Topics `hook` `unroot` `whale` `xpatch` `xposed` ## Description Xpatch is a collection of specialized utilities designed for modifying and resigning Android application packages to enable rootless hooking and plugin injection. It functions as an APK repackager that allows for the injection of loading logic and the application of new digital signatures to ensure modified binaries can be installed on devices. The project features a rootless hooking tool that inserts plugin loaders into application binaries, enabling runtime modifications without requiring system-level root access. It includes a signature bypass tool to disable internal verification checks, which prevents applications from crashing after their original developer signatures are removed and replaced. The toolkit covers several core capability areas, including manifest editing to change package identifiers and version codes, and module bundling to embed specific plugin files directly into the target package. It also supports the selection of different hooking engines and the management of module activation via external configuration files. ## Tags ### Mobile Development - [Android APK Repackaging Tools](https://awesome-repositories.com/f/mobile-development/android-apk-repackaging-tools.md) — Repackages Android application packages to insert plugin loading logic for rootless hooking. ([source](https://github.com/WindySha/Xpatch/blob/master/settings.gradle)) - [Rootless App Hooking Tools](https://awesome-repositories.com/f/mobile-development/rootless-app-hooking-tools.md) — Injects plugin loaders into application binaries to enable runtime modifications without requiring device root access. - [Android APK Signers](https://awesome-repositories.com/f/mobile-development/android-apk-signers.md) — Applies new digital signatures to repacked APKs to ensure they can be installed on target devices. ([source](https://github.com/WindySha/Xpatch/blob/master/settings.gradle)) - [Android App Rebuilding](https://awesome-repositories.com/f/mobile-development/android-app-rebuilding.md) — Rebuilds and resigns Android application packages after modifying the manifest or injecting custom loading logic. - [Android Manifest Editors](https://awesome-repositories.com/f/mobile-development/android-manifest-editors.md) — Modifies the package name, version code, version name, and debuggable status within the application manifest. ([source](https://github.com/WindySha/Xpatch/blob/master/README.md)) - [Android Plugin Injections](https://awesome-repositories.com/f/mobile-development/android-plugin-injections.md) — Embeds specific module files and loading logic into an APK to enable custom behavior upon application launch. - [Rootless Android Hooking](https://awesome-repositories.com/f/mobile-development/rootless-android-hooking.md) — Inserts a plugin loader into the application binary to enable runtime modifications without requiring system-level root access. - [Android Module Bundling](https://awesome-repositories.com/f/mobile-development/android-module-bundling.md) — Embeds specific plugin files directly into the target package for automatic loading upon launch. ([source](https://github.com/WindySha/Xpatch/blob/master/README.md)) - [Hooking Engine Selection](https://awesome-repositories.com/f/mobile-development/hooking-engine-selection.md) — The tool allows users to select or switch the underlying hooking engine to ensure compatibility with specific operating system versions. ([source](https://github.com/WindySha/Xpatch/blob/master/README.md)) ### DevOps & Infrastructure - [APK Signers](https://awesome-repositories.com/f/devops-infrastructure/distribution-packaging/software-distribution/application-packaging/android-packages/apk-signers.md) — Provides a tool to apply new digital signatures to repacked APKs so they can be installed on Android devices. - [Android Manifest Customization](https://awesome-repositories.com/f/devops-infrastructure/manifest-customizers/android-manifest-customization.md) — Changes package names, version codes, and debuggable status within an Android application to customize installation. ### Security & Cryptography - [Android Package Resigning](https://awesome-repositories.com/f/security-cryptography/android-package-resigning.md) — Removes original package certificates and applies new signatures to allow modified binaries to be installed. - [Signature Spoofing Utilities](https://awesome-repositories.com/f/security-cryptography/signature-verification-tools/signature-spoofing-utilities.md) — Disables internal signature verification checks to allow modified and resigned Android applications to run. - [Verification Bypasses](https://awesome-repositories.com/f/security-cryptography/signature-verification-tools/verification-bypasses.md) — Disables internal signature verification checks within modified applications to prevent crashes after repackaging. ([source](https://github.com/WindySha/Xpatch/blob/6ec0f3c16128dda46ab05bdd915d66ebbdaaf9fc/README_en.md)) ### Development Tools & Productivity - [System Hooking Frameworks](https://awesome-repositories.com/f/development-tools-productivity/application-customization-frameworks/system-hooking-frameworks.md) — Decouples injection logic from the hooking engine to allow switching between different runtime modification frameworks. - [Module Bundling](https://awesome-repositories.com/f/development-tools-productivity/source-bundling/module-bundling.md) — Embeds specific plugin files directly into the application package for automatic loading during launch.