Burp Suite
-
Hack the Box Pinned Walkthrough
This is going to be a walkthrough of Pinned, which is another one of the mobile challenges from Hack the Box. This challenge is rated Easy, so I’m not expecting it to be too difficult. But first, let’s take a look at the challenge description: This app has stored my credentials and I can only… Continue reading
-
Hack the Box Anchored Walkthrough
If you aren’t familiar with Hack the Box, it is a great resource to learn and get practice hacking lots of different types of targets in a lab environment. It has several servers and machines that you can hack into, but it also has a Challenges section that is broken down into different categories with… Continue reading
-
Bypassing SSL Pinning with Frida
If you have attempted to test many mobile applications, you have probably been in the following situation. You have installed the app you’re trying to test, and you have your mobile device ready to use with Burp Suite. Perhaps you followed the instructions in my previous blog post here. After turning on your proxy settings… Continue reading
-
Using Burp Suite with an Android Emulator
If you have ever tested a web application, Burp Suite was probably a key part of your toolkit, and it can be just as useful during mobile pentesting for testing the API endpoints that the mobile applications are using. Several years ago, using Burp Suite with an Android device was not much more complicated than… Continue reading