mobile
-
Read more: Supermarket – Hack The Box – @lautarovculic
Difficult: Medium Category: Mobile OS: Android Description: My supermarket list is too big and I only have $50. Can you help me get the Discount code? Download the .zip and install the APK vía ADB. adb install -r supermarket.apk Reading the application code and taking into account the description of the challenge, apparently we have…
-
Read more: SAW – Hack The Box – @lautarovculic
Difficult: Medium Category: Mobile OS: Android (SDK ≥ 29) Description: The malware forensics lab identified a new technique for hiding and executing code dynamically. A sample that seems to use this technique has just arrived in their queue. Can you help them? When you download the .zip file and extract them, we can see that…
-
Read more: APKey – Hack The Box – @lautarovculic
Difficult: Easy Category: Mobile OS: Android (SDK 30) Description: This app contains some unique keys. Can you get one? First, we need download the .apk For this mobile challenge,we need install an Android device with SDK 30 (Android 11 máx) with Genymotion. Decopile the .apk with apktool apktool d APKey.apk Here we can see that…
-
Read more: SeeTheSharpFlag – Hack The Box – @lautarovculic
Difficult: Medium Category: Mobile OS: Android Description: I have made a password verification app. If I can remember the password, the app will tell me it is correct. See if you can guess my password. The first step that we need to do is download the .zip file and extract the .apk with apktool Looking…
-
Read more: Hack The Box – Cryptohorrific – @lautarovculic
Difficult: Medium Category: Mobile OS: iOS Description: Secure coding is the keystone of the application security! After downloading the compressed file and decompressing it, we will have a folder where inside we find the files we need: The hackthebox file, is the main file of the program that contains the binary files. The .plist file…
-
Read more: Bypass restrictions with FRIDA
I recomment read this post first: Post First, we need install FRIDA with pip install frida-tools Now, we need know the arch of our Android device: adb shell If you have more than one device, you can run this command: adb -s -genymotion device ip-:5555 shell And, with uname -a We get the arch of…
-
Read more: Intercept Android App Traffic with BurpSuite
First, we need install genymotion in our machine. Genymotion And then, we will install virtualbox and adb. sudo apt-get install virtualbox adb And, obviously, we need install burpsuite. You can follow some guide for setup burpsuite in your machine, configure browser with foxyproxy or your preferred method. Once genymotion is installed, we are going to…
-
Read more: Supervivencia
It is a comprehensive survival manual with a compass in Spanish. The Android application is made in Java.
-
Read more: H1 Thermostat – @lautarovculic
Flags: 2 Difficulty: Easy Category: Mobile First, I recommend that you read the following post I wrote for Intercepting Android app traffic using Burpsuite. At the end of the post, there is the second flag 😉 But first, I want to clarify something. In this Writeups it is possible to get both flags with two…