For a long time, the adb backup command was the “Swiss Army Knife” for mobile pentesters. It allowed us to pull the private /data/data/ folder
Tag: security testing
Mobile Pentesting 101: How to Pull APKs from Work Profile – A Real-World Intune Challenge
Introduction During a recent mobile application penetration test, I encountered a challenging scenario that many mobile security testers face nowadays: extracting APKs from applications installed
Mobile Pentesting 101 – Bypassing Biometric Authentication
Android and iOS Fingerprint bypassing techniques. The article presents multiple biometric bypass methods, including Frida and objection.
Security Source Code Review – Manual Approaches
Performing security source code reviews is part of the penetration tester’s life. Either that this is the whole scope of an engagement or you exfiltrated
Exploiting Timed Based RCE
In a recent penetration testing project we encountered a situation where in order to prove exploitability and possible damage we had to exfiltrate data from
5 Benefits of a penetration test
Penetration testing projects are definitely fun for the passionate pentesters. However, the question is what are the real benefits of a pentest for the client
Security Café 