Tools to use
search for Credentials.class in jadx tool
apktool d -o foldername application
nuclei mobile template
gf urls ---> help to find Deeplinks in android application
gf strings | grep -i 'pass'
grep -Hnri βeyJβ * β color
grep -ihr --color client_secret ./base |Β head -1 https://github.com/ozguralp/gmapsapiscanner ---> Google Maps API Scanner
https://github.com/JakeWharton/pidcat ---> PID Cat ---> save it in local machine as /use/local/bin/pidcat CMD
adb -s 127.0.0.1:62001 logcat
pidcat -s 127.0.0.1:62001
find . -perm -o+r ---> Public accessable fileshttps://github.com/az0mb13/hooker ---> Mitmproxy hooks for encrypting and decrypting traffic on the go. Burp extension coming soon!
Last updated