Getting Started with Android App Testing with Genymotion

Okay so we've done iOS so by popular demand here is Android! In this episode, I show you how to get started with android app testing by using an emulator. Using Genymotion we set up an emulator, proxy our traffic into burp and see what APIs the Yahoo Mail app is calling. Much more simple than iOS, and you don't even need an android phone! Android is still a minority when it comes to platforms to hack, so don't worry you'll still be finding those bugs that no one else can!

Did you know this episode was sponsored by Intigriti? Sign up with my link http://go.intigriti.com/katie I'm so pleased with everyone's positive response to the Intigriti sponsorship and I'm so pleased you folks are finding bugs and even finding your first bugs! Thank you for being awesome!

Resources
- Genymotion: https://www.genymotion.com
- Using your device: https://medium.com/@buff3r/root-detection-ssl-pinning-bypass-with-frida-framework-31769d31723a
- What is SSL pinning: https://owasp.org/www-community/controls/Certificate_and_Public_Key_Pinning
- FRIDA: https://frida.re

Тэги:

#android_app_pentesting #android_app_hacking #android_pentesting #android_security #android_bug_bounty #bug_bounty #bug_bounty_methodology #bug_bounty_mobile #frida_tutorial_android #frida #pentesting_mobile_apps #pentesting_mobile #pentesting #bug_hunting #android_bug_bounty_tutorial #mobile_api_testing #mobile_api_security #mobile_security_app

Скачать видео