Research
Mobile
-
Mobile Lab
Tearing the APK apart: the static pass that finds a critical before you set a proxy
The APK on your disk is your target's source code, config, and secrets in one zip. One curl against a Firebase URL you grep out of strings.xml can be a world-readable database — the whole report, before you intercept a single request. Here's the static pass that finds it.
-
Mobile Lab
The Android 14 CA move that broke every '/system/etc' pinning tutorial
Since Android 14 the system CA trust store lives in an updatable APEX module, so remounting /system/etc/security/cacerts silently does nothing. That's why the classic 'copy your cert to /system' tutorials fail on new devices — plus the Flutter wall, native double-pinning, and the proxy-ignore detection trap.