V 4.0.0

Consistent visual hierarchy for cleaner UI 

The share icon previously directly visible on the document card has been removed. 

Sharing is now available through the three-dot (Kebab) menu for better UI clarity and reduced clutter. 

Improves visual cleanliness and reduces accidental taps. 

A new RAI Pen option is added to the bottom navigation bar. 

Provides quick access to RAI Pen pairing and interactions. 

Designed to improve accessibility to RAI Pen-related workflows. 

Minor layout refinements, spacing improvements, and text alignment updates for better readability and usability. 

A new product banner has been added at the top of the Profile screen. 

Helps promote premium notebooks and accessories. 

Clicking the banner redirects the user to the product website for easy purchase. 

For guest users, a Sign-In banner is added for better visibility and conversion. 

Encourages users to log in and unlock cloud sync + available feature 

In the About the App section, a new item “Release Notes” has been added. 

When clicked, the user is redirected to the official website Release Notes page. 

Makes it easy for users to track feature updates and improvements. 

A new hyperlink Buy from here is added under the coupon text field. 

Redirects users to the product purchase page. 

Helps improve conversion by guiding users who don’t already have a book. 

Updated the visual design of the Login screen for a more modern and user-friendly appearance. 

Optimized layout spacing, typography, and button styling for improved readability and accessibility. 

“Terms of Use” and “Privacy Policy” links are now displayed below the Continue button. 

Ensures transparency and compliance with legal standards before users proceed. 

Users can now sign up using the Continue with Email option. 

After entering their email and tapping Continue, users are redirected to the confirmation code entry screen. 

The email ID is automatically pre-filled on the password creation screen. 

Users set Password and Confirm Password to complete the sign-up process. 

Users enter their email and select Continue. 

On the next screen, the email field is auto filled for convenience. 

User must enter their password and tap Continue to complete login. 

Google and Microsoft sign-in buttons are available for faster onboarding. 

Provides seamless authentication using existing accounts. 

The Corporate Access option is now moved to the bottom of the screen. 

This prevents confusion with the regular login/sign-up options. 

Ensures a cleaner login experience for standard users while keeping enterprise access easily available. 

Updated navigation flow to ensure smoother transition from Edit Screen → Preview Screen across document workflows. 

The Custom Camera OCR has been retired. 

Replaced with a new Rotate option within the preview interface for better usability. 

To-Do Template 

SM Template 

MOM Template 

Apple Reminders Template (for eligible users of iPhone) 

Google Tasks 

Google Meet 

Google Send Mail 

Microsoft Tasks 

Microsoft Teams Meeting 

Outlook Send Mail 

Apple Reminders 

Mandatory update is now enforced for all users on older app versions. 

Targeted enforcement is also applied to specific users to ensure timely compliance and avoid compatibility issues. 

Folders – Create, rename, and delete folders with changes reflected instantly on both platforms. 

Documents – Upload, edit, rename, and delete documents, move to folder, add to tag with consistent visibility across app and web. 

Upload – Any files uploaded from either platform now sync immediately for uninterrupted workflow. 

Tags – Add, remove, and manage tags with updates reflected uniformly. 

Favourites – Mark or unmark items as favourite and access them from any platform. 

Trash – Items deleted on one platform appear in Trash on the other, ensuring consistent recovery options. 

Pin/Unpin – Pin important items for quick access and see the pinned state synced across both app and web. 

deobfuscatePath (String Obfuscation) 

What it does: The strings in your code (like "0tcjo0tv") are encrypted using a simple shift cipher. This function shifts the characters back to reveal the real path (e.g., /sbin/su). 

Why: If a hacker runs the strings command on your librenote.so file, they won't see obvious keywords like "root", "su", or "frida". This hides your intent and makes static analysis harder. 

crashApp (The Kill Switch) 

What it does: If a threat is detected, this function logs a message, waits 2 seconds (note: your log says "1 minute", but sleep(2) is 2 seconds), and then calls std::terminate(). 

Why: std::terminate() causes a hard native crash (SIGABRT). This is harder for Java-based try-catch blocks to intercept and stop. 

/system/app/Superuser.apk (Old root manager) 

/sbin/su (The binary that grants root permissions) 

/system/bin/su (Standard location for binaries) 

/system/xbin/su (Common location for root binaries) 

/data/local/xbin/su 

...and several others. 

Privilege Escalation: On a rooted device, a user (or malware) has "God mode." They can bypass Android's sandbox. 

Data Theft: Root access allows tools to look into your app's private data directory (/data/data/com.renote/) and read databases or preferences you thought were secure. 

Hooking: Root makes it much easier to install tools that intercept your app's functions. 

System Properties: It reads ro.kernel.qemu. If this value is "1", the device is running inside the QEMU emulator (which powers the Android Studio emulator). 

Drivers/Pipes: It looks for specific hardware driver files used by emulators: 

/dev/socket/qemud 

/dev/qemu_pipe 

Reverse Engineering: Hackers rarely test attacks on physical phones initially. They use emulators to debug your app, inspect memory, and analyze network traffic in a controlled environment. 

Automation: Emulators are used for "Bot farms" to automate actions (like creating fake accounts). Blocking emulators stops most low-effort attackers. 

frida-server 

frida-agent 

Dynamic Instrumentation: Frida is the #1 tool for hacking Android apps. It allows an attacker to inject JavaScript into your app while it is running. 

What Frida can do: 

Bypass SSL pinning. 

Call your functions directly (e.g., calling setPremiumUser(true)). 

Read unencrypted strings from memory. 

How the check works: When Frida attaches to your app, it injects a library (frida-agent.so) into your app's memory space. Your code spots this foreign library and crashes. 

xposed (The Xposed Framework) 

frida-agent (Double checking for Frida) 

Method Interception: Xposed and Substrate allow users to "hook" Java methods. They can replace your isPremium() function to always return true without ever modifying your APK file. 

System-Wide Hacks: These frameworks often load into the Zygote process, meaning they exist in the memory of every app on the device. 

com.android.vending.billing.InAppBillingService.LUCK (Lucky Patcher's fake billing service) 

com.chelpus.lackypatch (Lucky Patcher original package) 

cc.madkite.freedom (Freedom – a famous tool for bypassing In-App Purchases) 

com.dimonvideo.luckypatcher (Another Lucky Patcher variant) 

com.yellow8.patcher (Yellow8 Patcher) 

com.topjohnwu.magisk (Magisk Manager – the modern standard for managing Root access) 

Billing Fraud: Tools like Lucky Patcher and Freedom are designed to intercept Google Play Billing requests. They trick your app into thinking a user successfully paid for a subscription or coins, when in reality, they paid nothing. This protects your revenue stream. 

License Verification Bypass: These patchers can modify your APK locally to remove license checks or "Pro" mode verifications. 

Malicious Intent: The mere presence of these apps indicates the user is actively engaged in modifying or hacking applications. Even if your app isn't currently patched, running in an environment where these tools are present is a high-risk scenario. 

Information Disclosure: Developers often use logs to debug authentication flows, printing things like Log.d("Auth", "Token: " + accessToken). If these are left in production, anyone with a USB cable and ADB (Android Debug Bridge) can view your app's internal logic and sensitive data in real-time via Logcat. 

Attack Surface Reduction: Error logs often reveal the structure of your backend APIs or database queries. By silencing these, you deny attackers useful information about how your backend works. 

Keys are encrypted using a deterministic algorithm so they can be looked up. 

Values (like your accessToken, email, userId) are encrypted using AES-256 GCM. 

The master key used for this encryption is stored securely in the Android Hardware-Backed KeyStore, making it extremely difficult to extract. 

Protection Against Rooting: Even if an attacker bypasses your Root Detection (Point 2) and gains access to the /data/data/com.renote/ directory, they will only see gibberish inside your preference files. 

Prevention of Session Hijacking: If you stored the accessToken in plain text, an attacker could copy that token, paste it into their own session, and impersonate the user. Encryption renders the stolen file useless. 

GDPR/Privacy Compliance: Storing PII (Personally Identifiable Information) like email addresses in plain text is a security violation. Encryption ensures user privacy even if the device is compromised. 

Static Files: You check if the file system looks like a hacker's phone (Root/Emulator checks). 

Memory Scanning: You check if your app's RAM has been invaded by hacking tools (Frida/Hooking checks). 

Self-Defense: You hide the strings so they can't easily find what you are looking for, and you crash immediately if caught. 

OS Environment: (Patcher checks - verifying if the "neighbors" are hostile applications) 

Data Security: AES-256 encryption for local storage (EncryptedSharedPreferences). 

Leak Prevention: Complete removal of debug logs in production to prevent information disclosure. 

Pen introduction 

Feature overview 

Initial setup flow 

Rename notebook 

Share notebook 

Download notebook (PDF / JPG) 

Take Home Book 

Whether the pen is connected 

Battery percentage 

Pen settings shortcut 

Sync Offline Data 

Delete Offline Data 

Disconnect Pen 

Undo 

Redo 

Erase 

Thin stroke 

Medium stroke 

Thick stroke 

Predefined colours 

Custom colour selector 

Record speech 

Convert speech to text 

Generate summaries using AI 

Spelling & Grammar 

Writing Style 

Chatbot 

Summarize 

Keypoints 

PDF 

JPG 
Users can share entire notebooks or selected pages. 

Play back the recorded stroke sequence 

Review pen movement history 

Record voice 

Convert to text 

Summarize  

Inside the Summarize option, we provide a Summary view that includes the voice note summary, the note title, key action items, and a Transcript view showing the voice-to-text output. All of these can be copied or shared. 

PDF 

JPG 

Battery percentage 

Sync Offline Data 

Delete Offline Data

Disconnect Pen