Episode 6: Mobile Hacking Attack Vectors with Teknogeek (Joel Margolis)
Critical Thinking - Bug Bounty Podcast
00:00
API Hacking on Mobile Apps
Mobile API hacking is usually significantly easier than web API hacking. And it's also very clean, right? Like mobile developers aren't dealing with HTML. So typically the APIs are very clean, very straightforward, low amounts of auth. It's usually like an auth token, maybe a cookie. If you can bypass the cell pinning proxy, it's going to be way easier than hacking a lot of those desktopAPI that are going to use like a million different cookies and all that kind of stuff.
Transcript
Play full episode
