all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Secrets of an Android App Bug Hunter

Add to bookmarks
July 13, 2023, 2:38 p.m. | LiveOverflow

LiveOverflow www.youtube.com

Sergey Toshin tells us the story of how he became a top Android bug hunter and how he finds critical vulnerabilities. He also shows us a really cool vulnerability found in the Google Android Snapseed app. I didn't know this crazy attack vector exists!

Start Android Bug Hunting Here! Google App Scan Results: https://bughunters.google.com/report/targets/290590452

Google Mobile VRP: https://bughunters.google.com/about/rules/6618732618186752/google-mobile-vulnerability-reward-program-rules
Oversecured Blog: https://blog.oversecured.com/
Verify the output of tools: https://bughunters.google.com/learn/improving-your-reports/avoiding-mistakes/5981856648134656/verify-the-output-of-the-tools

More Bug Bounty Videos: https://www.youtube.com/playlist?list=PLhixgUqwRTjxKYsPTegCyL5adZaq5eILt
More Mobile Security: https://www.youtube.com/playlist?list=PLhixgUqwRTjxHFDl0OykeqZ-VvnClfDpT

Chapters:
00:00 - Intro …

android android app app attack attack vector bug critical critical vulnerabilities google google android hunter secrets sergey story vulnerabilities vulnerability

Visit resource

More from www.youtube.com / LiveOverflow

Finding The .webp Vulnerability in 8s (Fuzzing with AFL++) 4 months, 1 week ago | www.youtube.com
afl cve cve-2023-4863 fuzzing +9
A Vulnerability to Hack The World - CVE-2023-4863 5 months, 1 week ago | www.youtube.com
0day actively exploited blastpass buffer +21
Reinventing Web Security 6 months, 1 week ago | www.youtube.com
access clear database down +13
The Circle of Unfixable Security Issues 7 months, 2 weeks ago | www.youtube.com
bounty bug bug bounty bugs +12
Binary Exploitation vs. Web Security 7 months, 3 weeks ago | www.youtube.com
social support
Hacker Tweets Explained 8 months, 2 weeks ago | www.youtube.com
context explained hacker justin +6
Zenbleed (CVE-2023-20593) 9 months ago | www.youtube.com
amd amp asm assembly +18
The Discovery of Zenbleed ft. Tavis Ormandy 9 months, 2 weeks ago | www.youtube.com
bugs concept cpu cpus +16
Asking Android Developers About Security 10 months ago | www.youtube.com
android android developers android security asking +7

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia
View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)
View on infosec-jobs.com