Bugs & Writeups

From Android Static Analysis to RCE on Prod

This is a write-up of how a Remote Command Execution was found on an Internal server of the organisation through Static analysis of the Android app which was then leveraged to work on their Production server as well.