SlideShare una empresa de Scribd logo

OWASP Bangalore meet - Android Mobile Security

Abhinav Sejpal
Abhinav Sejpal

OWASP Bangalore meet - 28th March 2015 10:00 AM - 2:00 PM Mobile Application Security Testing Overview The Building blocks of Android Apps Live demos w.r.t Android App : Demo 1 - Poor Authorization and Authentication (M5) Demo 2 - Sensitive Information Leakage (M4) Demo 3 – Insecure Data storage (M2) Test factory Arsenal

Tecnología
1 de 26
Descargar para leer sin conexión
Oh Yes, I love your private data Android App Security Bangalore Meet up @ Abhinav Sejpal Fidelity Investments
WHO AM I Next Generation problem Solver Researcher & Reader in free time Speaker at Facilitator at Weekend Testing Crowd Tester (AKA. Bug bounty Hunter) Reported Security Vulnerabilities for 50+ unique customers all over the world inlcluding Apple, yahoo, Outlook, adobe & etc. Love to develop nasty code & Hack it :) Works as Security Researcher at AKA. Bug Wrangler Null & OWASP Community Accenture Digital Mobility
~Publication ~
DISCLAIMER This Presentation is intended for educational purposes only and I cannot be held liable for any kind of damages done whatsoever to your machine, or other damages. Please - Don't try this attack on any others system without having context knowledge or permission, this may harm to someone directly or indirectly. Feel free to use this presentation for practice or education purpose. It's no way related to my employer - its my own research and ideas. ^ I hope - You gotcha ^
SOCIAL MEDIA FEED Hashtag for this session #OWASPBlr, #MobileSecurity : Twitter handle for feedback : @ @OWASPBangalore Abhinav_Sejpal
AGENDA
INDIAN HACKERS/INFOSEC GUYS & GROUPS YOU SHOULD BE FOLLOWING IN TWITTER Thank-you http://garage4hackers.com/ community
@ , @ @ and @ CREDITS anantshri exploitprotocol adi1391 5h1vang Big thank and you one & All.OWASPBANGALORE
YES - I'M DONE! Feel free to write me at bug.wrangler at outlook.com
LICENSE AND COPYRIGHTS https://slides.com/abhinavsejpal/owasp-androidsecurity copyrights 2015-2016 Abhinav Sejpal ----- (CC BY-NC-ND 3.0) Attribution-NonCommercial-NoDerivs 3.0 Unported Dedicated to my lovely daddy

Recomendados

Android mobile app security offensive security workshop
Android mobile app security offensive security workshopAndroid mobile app security offensive security workshop
Android mobile app security offensive security workshopAbhinav Sejpal
 
Bug Bounty Hunter's Manifesto V1.0
Bug Bounty Hunter's Manifesto V1.0Bug Bounty Hunter's Manifesto V1.0
Bug Bounty Hunter's Manifesto V1.0Dinesh O Bareja
 
LKNOG3 - Bug Bounty
LKNOG3 - Bug BountyLKNOG3 - Bug Bounty
LKNOG3 - Bug BountyLKNOG
 
Bug Bounty Secrets
Bug Bounty Secrets Bug Bounty Secrets
Bug Bounty Secrets n|u - The Open Security Community
 
GoSec 2015 - Protecting the web from within
GoSec 2015 - Protecting the web from withinGoSec 2015 - Protecting the web from within
GoSec 2015 - Protecting the web from withinIMMUNIO
 
RailsConf 2015 - Metasecurity: Beyond Patching Vulnerabilities
RailsConf 2015 - Metasecurity: Beyond Patching VulnerabilitiesRailsConf 2015 - Metasecurity: Beyond Patching Vulnerabilities
RailsConf 2015 - Metasecurity: Beyond Patching VulnerabilitiesIMMUNIO
 
Mejores prácticas en el diseño e implementación de APIs
Mejores prácticas en el diseño e implementación de APIs Mejores prácticas en el diseño e implementación de APIs
Mejores prácticas en el diseño e implementación de APIs Arturo Garrido
 
Learn why use selenium with 3 million dollar bugs!
Learn why use selenium with 3 million dollar bugs!Learn why use selenium with 3 million dollar bugs!
Learn why use selenium with 3 million dollar bugs!Edureka!
 

Recomendados

Android mobile app security offensive security workshop
Android mobile app security offensive security workshopAndroid mobile app security offensive security workshop
Android mobile app security offensive security workshopAbhinav Sejpal
 
Bug Bounty Hunter's Manifesto V1.0
Bug Bounty Hunter's Manifesto V1.0Bug Bounty Hunter's Manifesto V1.0
Bug Bounty Hunter's Manifesto V1.0Dinesh O Bareja
 
LKNOG3 - Bug Bounty
LKNOG3 - Bug BountyLKNOG3 - Bug Bounty
LKNOG3 - Bug BountyLKNOG
 
Bug Bounty Secrets
Bug Bounty Secrets Bug Bounty Secrets
Bug Bounty Secrets n|u - The Open Security Community
 
GoSec 2015 - Protecting the web from within
GoSec 2015 - Protecting the web from withinGoSec 2015 - Protecting the web from within
GoSec 2015 - Protecting the web from withinIMMUNIO
 
RailsConf 2015 - Metasecurity: Beyond Patching Vulnerabilities
RailsConf 2015 - Metasecurity: Beyond Patching VulnerabilitiesRailsConf 2015 - Metasecurity: Beyond Patching Vulnerabilities
RailsConf 2015 - Metasecurity: Beyond Patching VulnerabilitiesIMMUNIO
 
Mejores prácticas en el diseño e implementación de APIs
Mejores prácticas en el diseño e implementación de APIs Mejores prácticas en el diseño e implementación de APIs
Mejores prácticas en el diseño e implementación de APIs Arturo Garrido
 
Learn why use selenium with 3 million dollar bugs!
Learn why use selenium with 3 million dollar bugs!Learn why use selenium with 3 million dollar bugs!
Learn why use selenium with 3 million dollar bugs!Edureka!
 
James jara portafolio
James jara portafolioJames jara portafolio
James jara portafolioJames Jara
 
How To Fix Bugs
How To Fix BugsHow To Fix Bugs
How To Fix BugsSoftware Projects Inc.
 
Bug Bounty Basics
Bug Bounty BasicsBug Bounty Basics
Bug Bounty BasicsHackerOne
 
Getting Started With Hacking Android & iOS Apps? Tools, Techniques and resources
Getting Started With Hacking Android & iOS Apps? Tools, Techniques and resourcesGetting Started With Hacking Android & iOS Apps? Tools, Techniques and resources
Getting Started With Hacking Android & iOS Apps? Tools, Techniques and resourcesOWASP Delhi
 
Build your mobile app from a to z presentation
Build your mobile app from a to z presentationBuild your mobile app from a to z presentation
Build your mobile app from a to z presentationSeyedmostafa Safavi
 
Owasp Top 10-2013
Owasp Top 10-2013Owasp Top 10-2013
Owasp Top 10-2013n|u - The Open Security Community
 
Mozilla Crash Analysis and Reporting
Mozilla Crash Analysis and ReportingMozilla Crash Analysis and Reporting
Mozilla Crash Analysis and Reportingmozillamarcia
 
Uncovering Secrets of Progressive Web Apps
Uncovering Secrets of Progressive Web AppsUncovering Secrets of Progressive Web Apps
Uncovering Secrets of Progressive Web AppsMaximiliano Firtman
 
Spyware
SpywareSpyware
Spywareguest6fde72
 
Spyware and adware
Spyware and adwareSpyware and adware
Spyware and adwareRaja Kiran
 
Spyware Adware1
Spyware Adware1Spyware Adware1
Spyware Adware1rubal_9
 
About my blog
About my blogAbout my blog
About my blogsimplyhillery
 
Owasp top 10 web application security hazards part 2
Owasp top 10 web application security hazards part 2Owasp top 10 web application security hazards part 2
Owasp top 10 web application security hazards part 2Abhinav Sejpal
 
Facebook voor bestuurders
Facebook voor bestuurdersFacebook voor bestuurders
Facebook voor bestuurderssimongryspeert
 
Breaking the mould_unlocking_the_benefits_of_a_tailored_upstream_operating_model
Breaking the mould_unlocking_the_benefits_of_a_tailored_upstream_operating_modelBreaking the mould_unlocking_the_benefits_of_a_tailored_upstream_operating_model
Breaking the mould_unlocking_the_benefits_of_a_tailored_upstream_operating_modelFrancesco Legname
 
Semaforo Audiovisual
Semaforo AudiovisualSemaforo Audiovisual
Semaforo AudiovisualMurilo Santos
 
Tfs branching guide_main_2010_v1
Tfs branching guide_main_2010_v1Tfs branching guide_main_2010_v1
Tfs branching guide_main_2010_v1Timo Kuisma
 
Sheepskin Flurries
Sheepskin FlurriesSheepskin Flurries
Sheepskin FlurriesPaul M
 
Printversion ice summer school 1 7-2013.key
Printversion ice summer school 1 7-2013.keyPrintversion ice summer school 1 7-2013.key
Printversion ice summer school 1 7-2013.keyJun Hu
 
CERTAMEN DE NAVIDAD. CIBER@AULA FRESNEDILLAS DE LA OLIVA.
CERTAMEN DE NAVIDAD. CIBER@AULA FRESNEDILLAS DE LA OLIVA.CERTAMEN DE NAVIDAD. CIBER@AULA FRESNEDILLAS DE LA OLIVA.
CERTAMEN DE NAVIDAD. CIBER@AULA FRESNEDILLAS DE LA OLIVA.ciberaulacso
 
Vek.od.ua Лидерство Доленко
Vek.od.ua Лидерство ДоленкоVek.od.ua Лидерство Доленко
Vek.od.ua Лидерство ДоленкоТренинговый Клуб "ВЕК"
 
Working With Passion by Tushar Joshi
Working With Passion by Tushar JoshiWorking With Passion by Tushar Joshi
Working With Passion by Tushar JoshiTushar Joshi
 

Más contenido relacionado

La actualidad más candente

James jara portafolio
James jara portafolioJames jara portafolio
James jara portafolioJames Jara
 
Bug Bounty Basics
Bug Bounty BasicsBug Bounty Basics
Bug Bounty BasicsHackerOne
 
Getting Started With Hacking Android & iOS Apps? Tools, Techniques and resources
Getting Started With Hacking Android & iOS Apps? Tools, Techniques and resourcesGetting Started With Hacking Android & iOS Apps? Tools, Techniques and resources
Getting Started With Hacking Android & iOS Apps? Tools, Techniques and resourcesOWASP Delhi
 
Build your mobile app from a to z presentation
Build your mobile app from a to z presentationBuild your mobile app from a to z presentation
Build your mobile app from a to z presentationSeyedmostafa Safavi
 
Mozilla Crash Analysis and Reporting
Mozilla Crash Analysis and ReportingMozilla Crash Analysis and Reporting
Mozilla Crash Analysis and Reportingmozillamarcia
 
Uncovering Secrets of Progressive Web Apps
Uncovering Secrets of Progressive Web AppsUncovering Secrets of Progressive Web Apps
Uncovering Secrets of Progressive Web AppsMaximiliano Firtman
 
Spyware and adware
Spyware and adwareSpyware and adware
Spyware and adwareRaja Kiran
 
Spyware Adware1
Spyware Adware1Spyware Adware1
Spyware Adware1rubal_9
 

La actualidad más candente (11)

James jara portafolio
James jara portafolioJames jara portafolio
James jara portafolio
 
How To Fix Bugs
How To Fix BugsHow To Fix Bugs
How To Fix Bugs
 
Bug Bounty Basics
Bug Bounty BasicsBug Bounty Basics
Bug Bounty Basics
 
Getting Started With Hacking Android & iOS Apps? Tools, Techniques and resources
Getting Started With Hacking Android & iOS Apps? Tools, Techniques and resourcesGetting Started With Hacking Android & iOS Apps? Tools, Techniques and resources
Getting Started With Hacking Android & iOS Apps? Tools, Techniques and resources
 
Build your mobile app from a to z presentation
Build your mobile app from a to z presentationBuild your mobile app from a to z presentation
Build your mobile app from a to z presentation
 
Owasp Top 10-2013
Owasp Top 10-2013Owasp Top 10-2013
Owasp Top 10-2013
 
Mozilla Crash Analysis and Reporting
Mozilla Crash Analysis and ReportingMozilla Crash Analysis and Reporting
Mozilla Crash Analysis and Reporting
 
Uncovering Secrets of Progressive Web Apps
Uncovering Secrets of Progressive Web AppsUncovering Secrets of Progressive Web Apps
Uncovering Secrets of Progressive Web Apps
 
Spyware
SpywareSpyware
Spyware
 
Spyware and adware
Spyware and adwareSpyware and adware
Spyware and adware
 
Spyware Adware1
Spyware Adware1Spyware Adware1
Spyware Adware1
 

Destacado

Owasp top 10 web application security hazards part 2
Owasp top 10 web application security hazards part 2Owasp top 10 web application security hazards part 2
Owasp top 10 web application security hazards part 2Abhinav Sejpal
 
Facebook voor bestuurders
Facebook voor bestuurdersFacebook voor bestuurders
Facebook voor bestuurderssimongryspeert
 
Breaking the mould_unlocking_the_benefits_of_a_tailored_upstream_operating_model
Breaking the mould_unlocking_the_benefits_of_a_tailored_upstream_operating_modelBreaking the mould_unlocking_the_benefits_of_a_tailored_upstream_operating_model
Breaking the mould_unlocking_the_benefits_of_a_tailored_upstream_operating_modelFrancesco Legname
 
Semaforo Audiovisual
Semaforo AudiovisualSemaforo Audiovisual
Semaforo AudiovisualMurilo Santos
 
Tfs branching guide_main_2010_v1
Tfs branching guide_main_2010_v1Tfs branching guide_main_2010_v1
Tfs branching guide_main_2010_v1Timo Kuisma
 
Sheepskin Flurries
Sheepskin FlurriesSheepskin Flurries
Sheepskin FlurriesPaul M
 
Printversion ice summer school 1 7-2013.key
Printversion ice summer school 1 7-2013.keyPrintversion ice summer school 1 7-2013.key
Printversion ice summer school 1 7-2013.keyJun Hu
 
CERTAMEN DE NAVIDAD. CIBER@AULA FRESNEDILLAS DE LA OLIVA.
CERTAMEN DE NAVIDAD. CIBER@AULA FRESNEDILLAS DE LA OLIVA.CERTAMEN DE NAVIDAD. CIBER@AULA FRESNEDILLAS DE LA OLIVA.
CERTAMEN DE NAVIDAD. CIBER@AULA FRESNEDILLAS DE LA OLIVA.ciberaulacso
 

Destacado (10)

About my blog
About my blogAbout my blog
About my blog
 
Owasp top 10 web application security hazards part 2
Owasp top 10 web application security hazards part 2Owasp top 10 web application security hazards part 2
Owasp top 10 web application security hazards part 2
 
Facebook voor bestuurders
Facebook voor bestuurdersFacebook voor bestuurders
Facebook voor bestuurders
 
Breaking the mould_unlocking_the_benefits_of_a_tailored_upstream_operating_model
Breaking the mould_unlocking_the_benefits_of_a_tailored_upstream_operating_modelBreaking the mould_unlocking_the_benefits_of_a_tailored_upstream_operating_model
Breaking the mould_unlocking_the_benefits_of_a_tailored_upstream_operating_model
 
Semaforo Audiovisual
Semaforo AudiovisualSemaforo Audiovisual
Semaforo Audiovisual
 
Tfs branching guide_main_2010_v1
Tfs branching guide_main_2010_v1Tfs branching guide_main_2010_v1
Tfs branching guide_main_2010_v1
 
Sheepskin Flurries
Sheepskin FlurriesSheepskin Flurries
Sheepskin Flurries
 
Printversion ice summer school 1 7-2013.key
Printversion ice summer school 1 7-2013.keyPrintversion ice summer school 1 7-2013.key
Printversion ice summer school 1 7-2013.key
 
CERTAMEN DE NAVIDAD. CIBER@AULA FRESNEDILLAS DE LA OLIVA.
CERTAMEN DE NAVIDAD. CIBER@AULA FRESNEDILLAS DE LA OLIVA.CERTAMEN DE NAVIDAD. CIBER@AULA FRESNEDILLAS DE LA OLIVA.
CERTAMEN DE NAVIDAD. CIBER@AULA FRESNEDILLAS DE LA OLIVA.
 
Vek.od.ua Лидерство Доленко
Vek.od.ua Лидерство ДоленкоVek.od.ua Лидерство Доленко
Vek.od.ua Лидерство Доленко
 

Similar a OWASP Bangalore meet - Android Mobile Security

Working With Passion by Tushar Joshi
Working With Passion by Tushar JoshiWorking With Passion by Tushar Joshi
Working With Passion by Tushar JoshiTushar Joshi
 
Elliott and Frizzell Top 10 Apps Presentation
Elliott and Frizzell Top 10 Apps PresentationElliott and Frizzell Top 10 Apps Presentation
Elliott and Frizzell Top 10 Apps PresentationAshton Elliott
 
Artificial intelligence teacher
Artificial intelligence teacherArtificial intelligence teacher
Artificial intelligence teacherRekha Verma
 
Lean Startup Machine - Mobile App Development
Lean Startup Machine - Mobile App DevelopmentLean Startup Machine - Mobile App Development
Lean Startup Machine - Mobile App DevelopmentAravind Krishnaswamy
 
How to think smarter about software development
How to think smarter about software developmentHow to think smarter about software development
How to think smarter about software developmentNilanjan Bhattacharya
 
10 TRENDS IN STAFFING TECH — DON'T GET BLINDSIDED
10 TRENDS IN STAFFING TECH — DON'T GET BLINDSIDED10 TRENDS IN STAFFING TECH — DON'T GET BLINDSIDED
10 TRENDS IN STAFFING TECH — DON'T GET BLINDSIDEDHuman Capital Media
 
Peerlyst Delhi NCR Chapter Meet
Peerlyst Delhi NCR Chapter MeetPeerlyst Delhi NCR Chapter Meet
Peerlyst Delhi NCR Chapter MeetAbhinav Mishra
 
Irresponsible Disclosure: Short Handbook of an Ethical Developer
Irresponsible Disclosure: Short Handbook of an Ethical DeveloperIrresponsible Disclosure: Short Handbook of an Ethical Developer
Irresponsible Disclosure: Short Handbook of an Ethical DeveloperLemi Orhan Ergin
 
English (US)_Classroom Toolkit - Unlocking Generative AI Safely and Responsib...
English (US)_Classroom Toolkit - Unlocking Generative AI Safely and Responsib...English (US)_Classroom Toolkit - Unlocking Generative AI Safely and Responsib...
English (US)_Classroom Toolkit - Unlocking Generative AI Safely and Responsib...AdliAlimi1
 
Rating tools technology assesment 2
Rating tools technology assesment 2Rating tools technology assesment 2
Rating tools technology assesment 2Marker671
 
Getting started with hacking android & i os apps tools, techniques and re...
Getting started with hacking android & i os apps tools, techniques and re...Getting started with hacking android & i os apps tools, techniques and re...
Getting started with hacking android & i os apps tools, techniques and re...n|u - The Open Security Community
 
Infosec is Broken “did you bring a knife to a gun fight?"
Infosec is Broken “did you bring a knife to a gun fight?"Infosec is Broken “did you bring a knife to a gun fight?"
Infosec is Broken “did you bring a knife to a gun fight?"Jorge Sebastiao
 
Owasp top 10 web application security hazards - Part 1
Owasp top 10 web application security hazards - Part 1Owasp top 10 web application security hazards - Part 1
Owasp top 10 web application security hazards - Part 1Abhinav Sejpal
 
A6 pragmatic journey into cyber security
A6 pragmatic journey into cyber securityA6 pragmatic journey into cyber security
A6 pragmatic journey into cyber securityJorge Sebastiao
 
Are you a lean mobile startup? Applying lean startup principles to mobile app...
Are you a lean mobile startup? Applying lean startup principles to mobile app...Are you a lean mobile startup? Applying lean startup principles to mobile app...
Are you a lean mobile startup? Applying lean startup principles to mobile app...Aravind Krishnaswamy
 
And i thoughtiknewqtp_preview
And i thoughtiknewqtp_previewAnd i thoughtiknewqtp_preview
And i thoughtiknewqtp_previewSaurabh Singh
 
And I thought I knew QTP - QTP Concepts Unplugged
And I thought I knew QTP - QTP Concepts UnpluggedAnd I thought I knew QTP - QTP Concepts Unplugged
And I thought I knew QTP - QTP Concepts UnpluggedTarun Lalwani
 
SearchLove London | Will Critchlow, 'The Threat of Mobile'
SearchLove London | Will Critchlow, 'The Threat of Mobile' SearchLove London | Will Critchlow, 'The Threat of Mobile'
SearchLove London | Will Critchlow, 'The Threat of Mobile' Distilled
 

Similar a OWASP Bangalore meet - Android Mobile Security (20)

Working With Passion by Tushar Joshi
Working With Passion by Tushar JoshiWorking With Passion by Tushar Joshi
Working With Passion by Tushar Joshi
 
Elliott and Frizzell Top 10 Apps Presentation
Elliott and Frizzell Top 10 Apps PresentationElliott and Frizzell Top 10 Apps Presentation
Elliott and Frizzell Top 10 Apps Presentation
 
Artificial intelligence teacher
Artificial intelligence teacherArtificial intelligence teacher
Artificial intelligence teacher
 
Lean Startup Machine - Mobile App Development
Lean Startup Machine - Mobile App DevelopmentLean Startup Machine - Mobile App Development
Lean Startup Machine - Mobile App Development
 
How to think smarter about software development
How to think smarter about software developmentHow to think smarter about software development
How to think smarter about software development
 
10 TRENDS IN STAFFING TECH — DON'T GET BLINDSIDED
10 TRENDS IN STAFFING TECH — DON'T GET BLINDSIDED10 TRENDS IN STAFFING TECH — DON'T GET BLINDSIDED
10 TRENDS IN STAFFING TECH — DON'T GET BLINDSIDED
 
Peerlyst Delhi NCR Chapter Meet
Peerlyst Delhi NCR Chapter MeetPeerlyst Delhi NCR Chapter Meet
Peerlyst Delhi NCR Chapter Meet
 
Youth-Led Tech Curriculum Day 20
Youth-Led Tech Curriculum Day 20Youth-Led Tech Curriculum Day 20
Youth-Led Tech Curriculum Day 20
 
Nick_Miller
Nick_MillerNick_Miller
Nick_Miller
 
Irresponsible Disclosure: Short Handbook of an Ethical Developer
Irresponsible Disclosure: Short Handbook of an Ethical DeveloperIrresponsible Disclosure: Short Handbook of an Ethical Developer
Irresponsible Disclosure: Short Handbook of an Ethical Developer
 
English (US)_Classroom Toolkit - Unlocking Generative AI Safely and Responsib...
English (US)_Classroom Toolkit - Unlocking Generative AI Safely and Responsib...English (US)_Classroom Toolkit - Unlocking Generative AI Safely and Responsib...
English (US)_Classroom Toolkit - Unlocking Generative AI Safely and Responsib...
 
Rating tools technology assesment 2
Rating tools technology assesment 2Rating tools technology assesment 2
Rating tools technology assesment 2
 
Getting started with hacking android & i os apps tools, techniques and re...
Getting started with hacking android & i os apps tools, techniques and re...Getting started with hacking android & i os apps tools, techniques and re...
Getting started with hacking android & i os apps tools, techniques and re...
 
Infosec is Broken “did you bring a knife to a gun fight?"
Infosec is Broken “did you bring a knife to a gun fight?"Infosec is Broken “did you bring a knife to a gun fight?"
Infosec is Broken “did you bring a knife to a gun fight?"
 
Owasp top 10 web application security hazards - Part 1
Owasp top 10 web application security hazards - Part 1Owasp top 10 web application security hazards - Part 1
Owasp top 10 web application security hazards - Part 1
 
A6 pragmatic journey into cyber security
A6 pragmatic journey into cyber securityA6 pragmatic journey into cyber security
A6 pragmatic journey into cyber security
 
Are you a lean mobile startup? Applying lean startup principles to mobile app...
Are you a lean mobile startup? Applying lean startup principles to mobile app...Are you a lean mobile startup? Applying lean startup principles to mobile app...
Are you a lean mobile startup? Applying lean startup principles to mobile app...
 
And i thoughtiknewqtp_preview
And i thoughtiknewqtp_previewAnd i thoughtiknewqtp_preview
And i thoughtiknewqtp_preview
 
And I thought I knew QTP - QTP Concepts Unplugged
And I thought I knew QTP - QTP Concepts UnpluggedAnd I thought I knew QTP - QTP Concepts Unplugged
And I thought I knew QTP - QTP Concepts Unplugged
 
SearchLove London | Will Critchlow, 'The Threat of Mobile'
SearchLove London | Will Critchlow, 'The Threat of Mobile' SearchLove London | Will Critchlow, 'The Threat of Mobile'
SearchLove London | Will Critchlow, 'The Threat of Mobile'
 

Último

The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024Rafal Los
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsJoaquim Jorge
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
Evaluating the top large language models.pdf
Evaluating the top large language models.pdfEvaluating the top large language models.pdf
Evaluating the top large language models.pdfChristopherTHyatt
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoffsammart93
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)Gabriella Davis
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationRadu Cotescu
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfsudhanshuwaghmare1
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Servicegiselly40
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Miguel Araújo
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptxHampshireHUG
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherRemote DBA Services
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationMichael W. Hawkins
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProduct Anonymous
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEarley Information Science
 

Último (20)

The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
Evaluating the top large language models.pdf
Evaluating the top large language models.pdfEvaluating the top large language models.pdf
Evaluating the top large language models.pdf
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
 
Scaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organizationScaling API-first – The story of a global engineering organization
Scaling API-first – The story of a global engineering organization
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
Mastering MySQL Database Architecture: Deep Dive into MySQL Shell and MySQL R...
 
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
04-2024-HHUG-Sales-and-Marketing-Alignment.pptx
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day PresentationGenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
 
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptxEIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
EIS-Webinar-Prompt-Knowledge-Eng-2024-04-08.pptx
 

OWASP Bangalore meet - Android Mobile Security

  • 1. Oh Yes, I love your private data Android App Security Bangalore Meet up @ Abhinav Sejpal Fidelity Investments
  • 2. WHO AM I Next Generation problem Solver Researcher & Reader in free time Speaker at Facilitator at Weekend Testing Crowd Tester (AKA. Bug bounty Hunter) Reported Security Vulnerabilities for 50+ unique customers all over the world inlcluding Apple, yahoo, Outlook, adobe & etc. Love to develop nasty code & Hack it :) Works as Security Researcher at AKA. Bug Wrangler Null & OWASP Community Accenture Digital Mobility
  • 4. DISCLAIMER This Presentation is intended for educational purposes only and I cannot be held liable for any kind of damages done whatsoever to your machine, or other damages. Please - Don't try this attack on any others system without having context knowledge or permission, this may harm to someone directly or indirectly. Feel free to use this presentation for practice or education purpose. It's no way related to my employer - its my own research and ideas. ^ I hope - You gotcha ^
  • 5. SOCIAL MEDIA FEED Hashtag for this session #OWASPBlr, #MobileSecurity : Twitter handle for feedback : @ @OWASPBangalore Abhinav_Sejpal
  • 7.
  • 8.
  • 9.
  • 10.
  • 11.
  • 12.
  • 13.
  • 14.
  • 15.
  • 16.
  • 17.
  • 18.
  • 19.
  • 20.
  • 21.
  • 22.
  • 23. INDIAN HACKERS/INFOSEC GUYS & GROUPS YOU SHOULD BE FOLLOWING IN TWITTER Thank-you http://garage4hackers.com/ community
  • 24. @ , @ @ and @ CREDITS anantshri exploitprotocol adi1391 5h1vang Big thank and you one & All.OWASPBANGALORE
  • 25. YES - I'M DONE! Feel free to write me at bug.wrangler at outlook.com
  • 26. LICENSE AND COPYRIGHTS https://slides.com/abhinavsejpal/owasp-androidsecurity copyrights 2015-2016 Abhinav Sejpal ----- (CC BY-NC-ND 3.0) Attribution-NonCommercial-NoDerivs 3.0 Unported Dedicated to my lovely daddy