Android Application Security Part 20 – Client Side Injections
Client Side Injections holds 7th position in OWASP Mobile Top 10 Javascript Injection: The mobile browser is vulnerable to javascript injection as well. Android default Browser has also access to...
View ArticleAndroid Application Security Part 21 – Exploiting Debuggable Applications
Consider a situation when your mobile is stolen and it is not rooted. If an application is marked as debuggable then any attacker can access the application data by assuming the privileges of that...
View ArticleAndroid Application Security Part 22 – Developer Backdoor
There are sometimes when developer put a backdoor to a particular application. He/She puts that because he doesn’t want somebody else to access that sensitive piece of Information and sometimes that...
View ArticleSpoofing your location in Play Store
Many a times you have seen that application which you want to assess is only allowed in selected countries, so in that case you won’t be able to install that application on you android device. But if...
View ArticleConfiguring your Device for Pentesting
In the First Part of the series i have shown how we can configure a virtual device for pentesting. In this post i will demonstrate how you can actually configure your real device(phone/tablet/smart...
View ArticleInstall Google Play Store in Genymotion
In this post i will demonstrate how you can install Google Play Store in a Genymotion Device. Switch ON your Genymotion Device. Download Google Apps from Cynogenmod Drag and Drop the downloaded zip...
View ArticleAndroid Application Security Part 26 – Intercept Traffic on Android version...
In this post i will demonstrate to intercept traffic after Android 4.2.2. Most of the android security professionals uses Cydia Substrate and Android-SSL-TrustKiller for intercepting traffic but as...
View ArticleAppie Version 3 Released
So it has been more than a year since Appie was launched, and i have been receiving awesome response from it’s users since then. Thanks a ton for that Below are some of changes which have been made...
View ArticleIoT Security Wiki Released
Hi ! From last 2-3 months i have been working on some projects related to IoT Security. As there are very less people in IoT Security, it was very difficult to find any resources and learn about it....
View ArticlePentestBox 2.0 Released
Hi, This is the first major release of PentestBox. Too much refractoring and structural changes are done. Before talking about new features and changes i would like to share intent behind creating...
View Article
More Pages to Explore .....