Critical Thinking - Bug Bounty Podcast cover image

Episode 6: Mobile Hacking Attack Vectors with Teknogeek (Joel Margolis)

Critical Thinking - Bug Bounty Podcast

00:00

JavaScript Interfaces for Web Views

There's a way for an attacker to open up an attacker controlled page inside of a web view in an app, you know, in your victim app. Then the attacker could use that interface, that JavaScript interface, just like a function,. And then it can just call functions and what that will do is actually trigger the Java code in the Android app. So this is definitely something I knew nothing about before I came into this episode. Dude, that is, that is super clutch. I'm definitely going to be looking for content providers in my Android apps that I assess.

Transcript
Play full episode

The AI-powered Podcast Player

Save insights by tapping your headphones, chat with episodes, discover the best highlights - and more!
App store bannerPlay store banner
 Get the app