Mobile Application Penetration Testing Setup In LinuxDownload Genymotion with virtual box: https://www.genymotion.com/product-desktop/download/ Installing Genymotion1. You can see something like “genymotion-3.X.X-linux_x64.bin” in your Downloads directory.2. Open your terminal and navigate to your Down...Dec 25, 2024·8 min read
Breaking In: How RXSS and SQLi Can Lead to Full Account Takeover and Database AccessNov 7, 2024·3 min read
Adding Knoxnl (KNOXSS) to BurpOpen Burp > Extensions Install Piper Go to Piper > Context menu items Click on Add Button and Enter Name as “knoxnl” In the Add menu item dialog box, enter the Name as knoxnl and change the Can handle... drop down to HTTP requests only. Change b...Nov 7, 2024·2 min read
Bypassing Root Detection in EvilCorp Mobile App (Without Runtime Tools)I recently stumbled upon an interesting misconfiguration in the EvilCorp Bug Bounty Program. The Android application had Root/Jailbreak Detection enabled, and my goal was to bypass it without relying on runtime manipulation tools like Frida, Objectio...Aug 29, 2024·5 min read
