Android applications can be attacked in a multitude of ways. This workshop will give an introduction to some of the most popular attacks. It will explain how the attacks work in theory, demonstrate how they can be done in practice, with which tools, and discuss…

UPDATE - This post has been updated to include a stable set of NAT rules for iptables. Mobile applications are becoming increasingly…

Hi everyone this post is just an elaboration of the 10th point that I made it in my previous post which is being often missed by…

体系化、实战化、step by step、目标清晰且具体的一个打怪升级、成长路径规划图. Contribute to r0ysue/MobileCTF development by creating an account on GitHub.

Hello everyone, while doing iOS application penetration testing you may have come across a situation where you don’t have the jailbroken…

As we saw in the previous article Assessing Security Risks of Local Storage on Non-Jailbroken iOS Devices that how we can install the…

Authored by SangRyol Ryu, McAfee Threat Researcher We live in a world where advertisements are everywhere, and it's no surprise that users are becoming

Have you ever wondered how hackers can compromise a computer with just a USB device? In this blogpost, we will explore the concept of HID attacks, which are a type of physical host attack that use a programmable device to emulate a keyboard or mouse and execute…

Sophos X-Ops researchers discover a cluster of credential-harvesting apps targeting Iranian bank customers

Injects frida gadget using zygisk to bypass anti-tamper checks. - lico-n/ZygiskFrida

In this report, we analyze the Windows, Android, and iOS versions of Tencent’s Sogou Input Method, the most popular Chinese-language input method in China. Our analysis found serious vulnerabilities in the app’s custom encryption system and how it encrypts…

The ARTful library for dynamically modifying the Android Runtime - LaurieWired/ARTful

Katalina is like Unicorn but for Dalvik bytecode. It provides an environment that can execute Android bytecode one instruction at a time. - huuck/Katalina

Join us in our journey into modern Android's Data Encryption at rest, in which we study how it works and assess how resistant it is against attackers having access to a range of high end software vulnerabilities.

If you are interested in Wi-Fi hacking using NetHunter, you need to have a supported Wi-Fi adapter by your system that can supports various wireless modes and features. In this blogpost, we will explain what the different types of Wi-Fi adapters are, how…

Uncover the disruptive nature of Gigabud malware and take proactive measures to mitigate the associated risks

Posted by David Adrian, Joe DeBlasio and Carlos Joan Rafael Ibarra Lopez, Chrome Security Chrome 106 added support for enforcing key pins...