Bug Bounty Guide and Examples

Basically, this webpage is just for record of useful links that I have found.

Android testing - https://github.com/muellerberndt/android_app_security_checklist

Android report and resources - https://github.com/B3nac/Android-Reports-and-Resources

Intentionally vulnerable app - https://hacker-gadgets.com/blog/2021/07/20/allsafe-intentionally-vulnerable-android-application/

Drozer Walkthrough - https://resources.infosecinstitute.com/topic/android-penetration-tools-walkthrough-series-drozer/

Hackerone report 1 - https://hackerone.com/reports/291764

Pentest using Frida - https://notsosecure.com/pentesting-android-apps-using-frida

Privledge escalation through intents android - https://github.com/d9w/6858-android-intents

Hackerone Report 2 - https://hackerone.com/reports/431002

hackerone report 3 - https://hackerone.com/reports/97295

hackerone report 4 - https://hackerone.com/reports/289000

Export webview - https://medium.com/mobis3c/exploiting-android-webview-vulnerabilities-e2bcff780892

Exploiting Broadcast recievers - https://resources.infosecinstitute.com/topic/android-hacking-security-part-3-exploiting-broadcast-receivers/

Android Root detection bypass - https://gowthamr1.medium.com/android-root-detection-bypass-using-objection-and-frida-scripts-d681d30659a7

Beginner guide to mobile security - https://rajatrao-13.github.io/learning/2020/06/10/Mobile-Security/#/

Exploiting Android Memory corruption - https://blog.oversecured.com/Exploiting-memory-corruption-vulnerabilities-on-Android/