Ethicalhackersacademy

Content

Introduction
Disclaimer
Pentesting White and Black box sample
Tools
Genymotion Setup
Installing Terminal
Burp Suite Installation sample
Setting up ADB
Genymotion Proxy
Certificate
Application Security
Unzip
Apktool
Dex2jar
File Parmission Present in Android
Android Database
Practical
Android Appilication Teardown
Application Signing
Top 10 Security issues
Top 10 Vulnerability Exploitation
Lesser known Android Attacks
Finding Vulnerabilities with Fuzz Testing
Android Startup Process
Digging Deeper
Android Traffic Interception
Analysis
Passive Analysis 1
Passive Analysis 2
Active Analysis
Vulnerability
File System Partition
AF-logical
Logcat
Information Leakage via Logcat Report
Fetching Data
SQlite
Insecure Data Storage
Insecure Data Storage
Possible to Steal any Protected files on Android Report
Account Hijacking Possible through ADB backup Feature Report
Webview Vulnerablity Report
Cross-Application Scripting in Android
Vulnerable to JavaScript Injection Report
HTML or XSS rendered in Android App
File Permission
Client-side Attack Surface
Client-side Attack Surface 2
Local Attack Surfaces
Physical Attack Surfaces
Attacking the Radio Interface Layer
Debugging and Analyzing Vulnerabilities
Expoit Mitigations
Miscellaneous Reports
Authentication Failed Mobile Version Report
Manifest allows for ADB backup attack when USB debugging is enabled report
Shopify Android Client all API Request's Response Leakage Report
Multiple Critical Vulnerabilities in Odnoklassniki Android Application Report
Email Leak in Transactions in Android App Report
Android Address Bar Spoofing Vulnerability Report
Bypass Pin
Coinbase Android Application - Bitcoin Wallet Leaks OAuth Response Code report
Content Provider Information Leakage report

Completion rules

All units must be completed

Course info

Bug Bounty: Android Hacking

Congratulations!

Course completed!

You didn't quite make it

Unfortunately, you didn't reach a passing score for this course

Notice

Notice

Notice