It is recommended not to store any sensitive data in device until and unless it is absolutely necessary. As the mobile device’s exposure to external threat is very high as compared to application server. For the requirement of storing the data on physical device, here are some common mistakes and Continue Reading
Mobile App
Android App Source code Extraction and Bypassing Root and SSL Pinning checks
In this blog I will be describing the pre-requesty steps I followed for one of the android application penetration testing which includes Source Code Extraction Bypass Root Detection & SSL Pinning Below are the steps with description Source Code Extraction Extracting jar file As we know that the apk is also Continue Reading
How I accessed Paid functionality in Dating Application
As usual, I was looking for some responsible disclosure programs on google and came across a project, which was a dating application and has iOS and Android application in Scope I started with the Android application, installed it and started using the application, it was from another country and was according Continue Reading