Unlocked the Bootloader of the Google Pixel SmartWatch (WearOS) using a Modded USB cable. Waiting for the support @topjohnwu... Thanks for the info @ShinyQuagsire... #NetSPI

Created a tool --> ExportHunter! For testing Exported Android Activities. Generate and launch APK to call activities with Bundles! No more hassling with ADB or Android Studio. Check it out! https://t.co/xFDTJ7g2PO #Android #CyberSecurity"

Stop yourself from using excuses for anything ever no matter how valid. STOP saying them & eventually you'll STOP thinking them. "Did you crash the car" Yes > Yes, it was icy The car still crashed. The excuse repairs nothing. You failed. Accept it. Learn. Don't do it again

As promised, here the the content of the workshop "Mobile app instrumentation" we presented at @NSConclave https://t.co/R4cScGrA3O

Almost every publicly available CVE PoC database. https://t.co/MzWdFiqRwJ #Security #Pentesting #SecurityEveryday #bugbounty #pentest #appsec

Weaponizing WaybackUrls for Recon, BugBounties , OSINT, Sensitive Endpoints and what not. Wrote this tool this weekend, PS I’m noob in coding 😁 @0xAsm0d3us @Jhaddix @stokfredrik @theXSSrat @NahamSec Link: https://t.co/5I03eJbk8E

A curated list of Android Security materials and resources For Pentesters and Bug Hunters https://t.co/vdwIvKrOo4 #Security #Pentesting #SecurityEveryday #bugbounty #pentest #AppSec

Inspired by @infosec_au's blog on high-frequency bug hunting, I and @caffeinevulns decided to try the same on @SynackRedTeam targets. As an update, I wrote this article that showcases all the bugs that I found and a short write-up on I how I found them: https://t.co/qE0cpMVVqt

Jira payloads A thread 🧵 #bugbounty #bugbountytips #jira

Orwellian Logic 🖖🏼

Very Short Blog about Open Redirection bug I found based on SRC. https://t.co/vpxv9GIQ0M

Android Webview Hacking 🧵👇 #pentest #MobileSecurity #frida #bugbounty #bugbountytips #smali

reFlutter helps with Flutter apps reverse engineering using the patched version of the Flutter library which is already compiled and ready for app repacking. https://t.co/NI5y46msN0 #pentest #MobileSecurity #bugbounty #bugbountytips #flutter

Blog about a bug I found on Thick Client application while reviewing the source code. https://t.co/MaDoOCdWUW

Tip for Android Beginners: ++ sudo from inside ssh -> copy .APK to sdcard before pulling in case privilege error

Testing a Cordova app? Enable webview debugging using @fridadotre to debug the application. https://t.co/ttMn7eAw4t #Cordova #pentest #MobileSecurity #frida #bugbounty #bugbountytips

Found Arbitrary Command Exec in a Thick Client App. Not some crazy overflow or PE. Still Popping up a CALC brings excitement every time.

I just published @Hacker0x01's #hacktivitycon2021 CTF writeup: Reactor Android Challenge 📱 https://t.co/NLAoQRYHIA

XSS to RCE in the Opera Browser https://t.co/0KyiNITknO

Let's discuss a scenario, bypassing Root detection with @fridadotre 🧵👇