Secrets of an Android App Bug Hunter
Sergey Toshin tells us the story of how he became a top Android bug hunter and how he finds critical vulnerabilities. He also shows us a really cool vulnerability found in the Google Android Snapseed app. I didn’t know this crazy attack vector exists!
Start Android Bug Hunting Here! Google App Scan Results:
Google Mobile VRP:
Oversecured Blog:
Verify the output of tools:
Chapters:
00:00 - Intro
00:57 - Meet Sergey Toshin (Oversecured)
02:51 - How Oversecured Started
04:42 - Verify The Output of Tools!
07:17 - First Look at Vulnerability
09:58 - 1. Explained: Android Intents
11:25 - 2. Explained: Content Providers
12:51 - 3. Explained: App Permissions
13:34 - Exploit Walkthrough
16:17 - Proof of Concept and Report
17:15 - Android VRP Rewards
18:32 - Start Hunting for Bugs in Google Apps!
=[ ❤️ Support ]=
→ per Video:
→ per Month:
=[ 🐕 Social ]=
→ Twitter:
→ Instagram:
→ Blog:
→ Subreddit:
→ Facebook:
7 years ago 00:30:21 464
12 years ago 00:02:33 141
5 years ago 00:13:08 64
5 years ago 00:12:29 38
3 years ago 00:04:02 318
3 years ago 00:02:24 14
8 years ago 00:02:49 57
10 years ago 00:02:00 38
3 years ago 00:02:25 168
2 years ago 00:00:39 14
3 years ago 00:02:02 144
5 years ago 00:10:30 81
2 years ago 00:03:56 68
3 years ago 00:02:45 232
11 years ago 00:02:20 136
5 years ago 00:02:54 30
4 years ago 00:03:18 56
4 years ago 00:02:39 27
6 years ago 00:13:17 140
12 years ago 00:02:29 146
![Secrets of Donetsk. [Levels]](https://sun9-5.userapi.com/c6029/u48026289/video/l_48faa5c7.jpg)
8 years ago 00:08:43 137
5 years ago 00:04:04 172
5 years ago 00:12:53 239
9 years ago 00:04:57 1.1K
