Skip to content

Vaibhav Joshi

Cyber Security Enthusiast

Primary Menu
  • About Me
  • Blogs
  • Contact Me
  • Donate
  • Services
  • Twitter
  • Wpsd Thank You

Mobile App

Insecure Data Storage in Android

Posted on August 6, 2021August 6, 2021 by vj0shii

It is recommended not to store any sensitive data in device until and unless it is absolutely necessary. As the mobile device’s exposure to external threat is very high as compared to application server. For the requirement of storing the data on physical device, here are some common mistakes and Continue Reading

Posted In Mobile AppTagged In mobileappsecurity, pentesting

Android App Source code Extraction and Bypassing Root and SSL Pinning checks

Posted on June 24, 2021June 30, 2021 by vj0shii

In this blog I will be describing the pre-requesty steps I followed for one of the android application penetration testing which includes Source Code Extraction Bypass Root Detection & SSL Pinning Below are the steps with description Source Code Extraction Extracting jar file As we know that the apk is also Continue Reading

Posted In Code Review, Mobile App

How I accessed Paid functionality in Dating Application

Posted on June 24, 2021June 30, 2021 by vj0shii

As usual, I was looking for some responsible disclosure programs on google and came across a project, which was a dating application and has iOS and Android application in Scope I started with the Android application, installed it and started using the application, it was from another country and was according Continue Reading

Posted In Mobile App

Recent Posts

  • Insecure Data Storage in Android
  • Multi-factor Auth Bypass with Password Reset Function
  • Exploiting Application Logic to Referral Code Disclosure
  • Price Tampering due to Improper checks on applying Coupon
  • Android App Source code Extraction and Bypassing Root and SSL Pinning checks

Archives

  • August 2021
  • June 2021

Categories

  • Code Review
  • Mobile App
  • Web App
Copyright All rights reserved | Theme: Adventure Blog by Unitedtheme.