Creator of "VyAPI – A Modern Cloud Based Vulnerable Android App"
Application Security Analyst at Appsecco (@appseccouk)
To provide Android security enthusiasts a platform to practice hacking a cloud-based vulnerable Android app
Can you intercept the secret SMS?
Where is the encryption key?
First, find a Cognito Identity Pool ID
Can unauthenticated users access sensitive AWS services?
What's NOT Visible
VyAPI is a cloud-based vulnerable Android app for Android security enthusisats.
To get started, you need to