all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Hacking & Securing Android Applications

Add to bookmarks
Jan. 29, 2024, 3:02 a.m. | OWASP Foundation

OWASP Foundation www.youtube.com

I'll talk through two separate security vulnerabilities, in two android applications - both disclosed on hackerone, and both leading to stolen auth tokens. I'll then talk about how we could have caught the two vulnerabilities - both from a process point of view (i.e. SAST tools, threat modelling etc) and discuss how 'safe to run' - an open source library - could have caught both.

Daniel Llewellyn
xDesign
Head of Engineering (tech enablement)

I currently work as a head of …

android applications auth caught discuss etc hackerone hacking point process run safe sast security stolen threat threat modelling tokens tools vulnerabilities

Visit resource

More from www.youtube.com / OWASP Foundation

OWASP 2024 Global AppSec Lisbon -- Promo 3 weeks, 6 days ago | www.youtube.com
foundation managed owasp
Security for Citizen Developers: Low-Code/No-Code Cybersecurity Threats 1 month ago | www.youtube.com
foundation managed owasp
Meet OWASP Top 10 for LLM Apps at RSA! 1 month, 4 weeks ago | www.youtube.com
apps calling conference foundation +14
AI and API Security Panel 2 months ago | www.youtube.com
api apis apisec api security +31
OWASP Spot 2 months, 3 weeks ago | www.youtube.com
foundation managed owasp
The State of Secure DevOps - Security enables Velocity 3 months, 3 weeks ago | www.youtube.com
accelerate can challenge change +17
OpenCRE.org - Universal Translator for Security 3 months, 3 weeks ago | www.youtube.com
authors business business risk code +19
Level Up Your Security Champions (and Your Program) 3 months, 3 weeks ago | www.youtube.com
application application security build current +12
How to Avoid Potholes When Scaling Your Application Security Program 3 months, 3 weeks ago | www.youtube.com
application application security build companies +13

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Senior Security Researcher - Linux MacOS EDR (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com

Sr. Manager, NetSec GTM Programs

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

SOC Analyst I

@ Fortress Security Risk Management | Cleveland, OH, United States
View on infosec-jobs.com