Discover Secrets in React Native Apps | Hack the Box Don't Overreact

  Рет қаралды 615

CorSecure

CorSecure

10 ай бұрын

In this video I solve the Don't Overreact challenge from Hack The Box. This challenge involves using static analysis to find hardcoded strings in an Android app that was built with React Native.
Check out my new website here:
corsecure.blog
Sign up for Hack the Box with my affiliate link:
hacktheboxltd.sjv.io/VmGgeE

Пікірлер: 14
@CorSecure
@CorSecure 10 ай бұрын
You can sign up for Hack the Box VIP to access this and many other retired challenges with my affiliate link here: affiliate.hackthebox.com/ylhzfj9qpzwd
@wardellcastles
@wardellcastles 9 ай бұрын
Thanks for the shout out! Love your channel. Yes please continue with more HTB Android CTFs when they retire!
@nicholascastles
@nicholascastles 9 ай бұрын
Haha I know this guy👀
@amyt5031
@amyt5031 10 ай бұрын
Great video! Thanks for sharing
@Rev.Eng.-ru7hw
@Rev.Eng.-ru7hw 10 ай бұрын
Love It Brother, Can You Create A Complete Series On React Native Patching. Because This Index Bundle Is Normal But There Will Be Some Which Is Obfuscated.
@cedricflutter311
@cedricflutter311 10 ай бұрын
Do you also have experience with flutter app security?
@0xfsec
@0xfsec 10 ай бұрын
Love all your android hacking videos.. Please do a content for ios hacking too..
@CorSecure
@CorSecure 10 ай бұрын
Thanks! I'll try to come up with some ideas for iOS hacking soon.
@aadityaa72
@aadityaa72 10 ай бұрын
Thanks for the video!. Please create a video on how to modify and recompile and sign apk and install in android.
@CorSecure
@CorSecure 10 ай бұрын
I actually covered that in my solution to one of the other Hack The Box challenges that I already recorded, but I can't post it until that challenge is retired. If they don't retire it soon, I can make a separate video on that topic.
@CorSecure
@CorSecure 10 ай бұрын
I was just reminded that I already posted a video covering this topic, and I remembered your comment and wanted to let you know. In the video linked below, I edit an APK and then re-sign it and install it on an android device. I hope this helps! kzbin.info/www/bejne/joLVlWaPgJmcsLM
@aadityaa72
@aadityaa72 10 ай бұрын
@@CorSecure thanks for your reply. I have already seen that video and was succeed to do that. Thanks alot for this video. But from modify means modifying source code. Just like how there are clones like KZbin vanced, gb whatsapp. How they add extra features since writing in .smalli files is very difficult
@CorSecure
@CorSecure 10 ай бұрын
That would require some more advanced reverse engineering and development that is a bit outside of my expertise. If I had to do something like that though, I would start by decompiling the APK with jadx. Then importing that Java code into Android Studio and making whatever code changes necessary there. I'm not a developer though, so I don't really feel qualified to go into much detail on that kind of project.
@aadityaa72
@aadityaa72 10 ай бұрын
@@CorSecure Thanks😄
Stop Doing this as a React Developer
12:27
Stop Doing this as a React Developer
CoderOne
Рет қаралды 161 М.
I created the World's BEST Ai Tracking Sheet (Automated Follow Ups)
19:25
I created the World's BEST Ai Tracking Sheet (Automated Follow Ups)
Charlie Barber
Рет қаралды 1 М.
Задержи дыхание дольше всех!
00:42
Задержи дыхание дольше всех!
Аришнев
Рет қаралды 3,7 МЛН
How Many Balloons Does It Take To Fly?
00:18
How Many Balloons Does It Take To Fly?
MrBeast
Рет қаралды 199 МЛН
Best KFC Homemade For My Son #cooking #shorts
00:58
Best KFC Homemade For My Son #cooking #shorts
BANKII
Рет қаралды 68 МЛН
ВОДА В СОЛО
00:20
ВОДА В СОЛО
⚡️КАН АНДРЕЙ⚡️
Рет қаралды 32 МЛН
Why use a Custom Hook for React Context API instead of useContext (+ TypeScript)
9:34
Why use a Custom Hook for React Context API instead of useContext (+ TypeScript)
ByteGrad
Рет қаралды 128 М.
React Native Data Fetching with TanStack Query v4
1:00:04
React Native Data Fetching with TanStack Query v4
Simon Grimm
Рет қаралды 11 М.
The Most Legendary Programmers Of All Time
11:49
The Most Legendary Programmers Of All Time
Aaron Jack
Рет қаралды 542 М.
The Story of Next.js
12:13
The Story of Next.js
uidotdev
Рет қаралды 559 М.
Emacs Flutter + Dart Eglot TreeSitter Nix setup using Home Manager
8:50
Emacs Flutter + Dart Eglot TreeSitter Nix setup using Home Manager
J. J. Bigorra
Рет қаралды 391
Bypass SSL Pinning on Android | Hack the Box Pinned
7:15
Bypass SSL Pinning on Android | Hack the Box Pinned
CorSecure
Рет қаралды 1,3 М.
Speed Up Your React Apps With Code Splitting
16:50
Speed Up Your React Apps With Code Splitting
Web Dev Simplified
Рет қаралды 375 М.
Hacking an Android CTF App
8:26
Hacking an Android CTF App
CorSecure
Рет қаралды 924
The Power Of NOT REACTING | The Best Reaction Is NO Reaction
11:46
The Power Of NOT REACTING | The Best Reaction Is NO Reaction
Knowledge Words
Рет қаралды 1,3 МЛН
Manipulating the DOM In ReactJS | useRef
16:10
Manipulating the DOM In ReactJS | useRef
PedroTech
Рет қаралды 35 М.
Новые iPhone 16 и 16 Pro Max
0:42
Новые iPhone 16 и 16 Pro Max
Romancev768
Рет қаралды 2,3 МЛН
Сколько реально стоит ПК Величайшего?
0:37
Сколько реально стоит ПК Величайшего?
CONSTRUCT PC
Рет қаралды 3,8 МЛН
НОВЫЕ ФЕЙК iPHONE 🤯 #iphone
0:37
НОВЫЕ ФЕЙК iPHONE 🤯 #iphone
ALSER kz
Рет қаралды 353 М.
Homemade mobile phone cooling device, the phone does not get hot and can be used as a stand. I n
0:11
Homemade mobile phone cooling device, the phone does not get hot and can be used as a stand. I n
Toy Kid
Рет қаралды 21 МЛН
POCO X6 PRO😈 Vs iPHONE 15 PRO💀Vs POCO F6 PRO😱 VsiQOO 12Vs 8GBvs4GBVs-PUBG TEST #pocox6pro #iPhone
0:16
POCO X6 PRO😈 Vs iPHONE 15 PRO💀Vs POCO F6 PRO😱 VsiQOO 12Vs 8GBvs4GBVs-PUBG TEST #pocox6pro #iPhone
Nir Gaming
Рет қаралды 6 МЛН
Какой ноутбук взять для учёбы? #msi #rtx4090 #laptop #юмор #игровой #apple #shorts
0:18
Какой ноутбук взять для учёбы? #msi #rtx4090 #laptop #юмор #игровой #apple #shorts
Buy Smart┃Магазин ноутбуков
Рет қаралды 1,7 МЛН
Лучший браузер!
0:27
Лучший браузер!
Honey Montana
Рет қаралды 933 М.