all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Secrets of an Android App Bug Hunter

Add to bookmarks
July 13, 2023, 2:38 p.m. | LiveOverflow

LiveOverflow www.youtube.com

Sergey Toshin tells us the story of how he became a top Android bug hunter and how he finds critical vulnerabilities. He also shows us a really cool vulnerability found in the Google Android Snapseed app. I didn't know this crazy attack vector exists!

Start Android Bug Hunting Here! Google App Scan Results: https://bughunters.google.com/report/targets/290590452

Google Mobile VRP: https://bughunters.google.com/about/rules/6618732618186752/google-mobile-vulnerability-reward-program-rules
Oversecured Blog: https://blog.oversecured.com/
Verify the output of tools: https://bughunters.google.com/learn/improving-your-reports/avoiding-mistakes/5981856648134656/verify-the-output-of-the-tools

More Bug Bounty Videos: https://www.youtube.com/playlist?list=PLhixgUqwRTjxKYsPTegCyL5adZaq5eILt
More Mobile Security: https://www.youtube.com/playlist?list=PLhixgUqwRTjxHFDl0OykeqZ-VvnClfDpT

Chapters:
00:00 - Intro …

android android app app attack attack vector bug critical critical vulnerabilities google google android hunter secrets sergey story vulnerabilities vulnerability

Visit resource

More from www.youtube.com / LiveOverflow

Finding The .webp Vulnerability in 8s (Fuzzing with AFL++) 3 months, 1 week ago | www.youtube.com
afl cve cve-2023-4863 fuzzing +9
A Vulnerability to Hack The World - CVE-2023-4863 4 months, 1 week ago | www.youtube.com
0day actively exploited blastpass buffer +21
Reinventing Web Security 5 months, 1 week ago | www.youtube.com
access clear database down +13
The Circle of Unfixable Security Issues 6 months, 2 weeks ago | www.youtube.com
bounty bug bug bounty bugs +12
Binary Exploitation vs. Web Security 6 months, 3 weeks ago | www.youtube.com
social support
Hacker Tweets Explained 7 months, 1 week ago | www.youtube.com
context explained hacker justin +6
Zenbleed (CVE-2023-20593) 8 months ago | www.youtube.com
amd amp asm assembly +18
The Discovery of Zenbleed ft. Tavis Ormandy 8 months, 2 weeks ago | www.youtube.com
bugs concept cpu cpus +16
Asking Android Developers About Security 9 months ago | www.youtube.com
android android developers android security asking +7

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Data Privacy Manager m/f/d)

@ Coloplast | Hamburg, HH, DE
View on infosec-jobs.com

Cybersecurity Sr. Manager

@ Eastman | Kingsport, TN, US, 37660
View on infosec-jobs.com

KDN IAM Associate Consultant

@ KPMG India | Hyderabad, Telangana, India
View on infosec-jobs.com

Learning Experience Designer in Cybersecurity (f/m/div.) (Salary: ~113.000 EUR p.a.*)

@ Bosch Group | Stuttgart, Germany
View on infosec-jobs.com

Senior Security Engineer - SIEM

@ Samsara | Remote - US
View on infosec-jobs.com
View more jobs