On Magisk, I guess this would depend on the method of root detection used, e.g. the InsecureBankV2 app uses simple string pattern matching, looking for the name of superuser related apk and functions. It's worth saying that bypassing root detection is generally out of scope in bug bounty, e.g. from the itsme BB program: "Bypassing Root- or Hook-detection on Android is currently out-of-scope". The main reason for demonstrating root detection and bypass in these videos is a) it's a good way to learn about patching APKs and dynamic tools like frida and b) the insecure app has root detection bypass built in as one of it's challenges 🙂
Amazing content, great explanation!! are you running ADV inside parrot vm with nested virtualization? What spec have the vm? Im trying but sometime i have some issues and lag when is running.
Hey, some of the techniques used in these videos (e.g. Frida hooking) can be used for SSL cert pinning bypass, check this: infosecwriteups.com/hail-frida-the-universal-ssl-pinning-bypass-for-android-e9e1d733d29
There is an intigriti telegram channel but it's not very active, we normally use it around conferences. You can join our discord though: go.intigriti.com/discord
Thank you sir for this awesome tutorial, please what did you install to run this command? => type -a extract and => extract Please show me how you can extract multiple file extension with one command according to 07:14 - 07:29 Show me everything I need to install to make it work like yours.
Hey, thanks mate! For your question: "type -a extract" shows you the bash alias (shortcut) that I have mapped to the "extract" command. You can check here for the full list of bash aliases I use: github.com/Crypto-Cat/CTF/blob/main/my_bash_aliases.md 😊
![Weak Authentication [InsecureBankv2 APK]](http://i.ytimg.com/vi/B8crggD7Z6I/mqdefault.jpg)
![Weak Authentication [InsecureBankv2 APK]](/img/tr.png)
Very nice work dude!
🙏🥰
Is it reliable to use Magisk modules to bypass root detection? And is it possible to pass safetynet with frida without magisk?
On Magisk, I guess this would depend on the method of root detection used, e.g. the InsecureBankV2 app uses simple string pattern matching, looking for the name of superuser related apk and functions. It's worth saying that bypassing root detection is generally out of scope in bug bounty, e.g. from the itsme BB program: "Bypassing Root- or Hook-detection on Android is currently out-of-scope". The main reason for demonstrating root detection and bypass in these videos is a) it's a good way to learn about patching APKs and dynamic tools like frida and b) the insecure app has root detection bypass built in as one of it's challenges 🙂
Amazing content, great explanation!! are you running ADV inside parrot vm with nested virtualization? What spec have the vm? Im trying but sometime i have some issues and lag when is running.
Thank you! I do indeed, it's pretty slow even with the 32gb of RAM I have assigned to the VM lol. It's usable though..
@@intigriti Thank you!!
How donwe bypass sslpinning, please? Do you have a video on that?
Hey, some of the techniques used in these videos (e.g. Frida hooking) can be used for SSL cert pinning bypass, check this: infosecwriteups.com/hail-frida-the-universal-ssl-pinning-bypass-for-android-e9e1d733d29
Hi very nice video, do have any video on how to sniff a Android apk that blocks the vpn sniffer and thanks.
The only android videos we have are in this series, we might look to expand it in future though!
@@intigriti I'll be in the lookout and thanks!🙂
Please send links to download apps!
All links are in the description! 😉
Any solution for zygisk with magisk
Hi can you bypass apk which i will give you bcz i cannot do this if it is possible i can pay for it
This isn't something we'd be able to help with, sorry!
Do you have a telegram channel. I need to send you some screenshots of by bypass detector
There is an intigriti telegram channel but it's not very active, we normally use it around conferences. You can join our discord though: go.intigriti.com/discord
thanks i need to talk to you about thing, How do I contact you?
Hey, you can join our discord if you want to ask the community questions - go.intigriti.com/discord
Nice 👍
Thanks ✌
Thanks
No problem 💜
Thank you sir for this awesome tutorial, please what did you install to run this command?
=> type -a extract
and
=> extract
Please show me how you can extract multiple file extension with one command according to 07:14 - 07:29
Show me everything I need to install to make it work like yours.
Hey, thanks mate! For your question: "type -a extract" shows you the bash alias (shortcut) that I have mapped to the "extract" command. You can check here for the full list of bash aliases I use: github.com/Crypto-Cat/CTF/blob/main/my_bash_aliases.md 😊
are you cryptocat ????
yes!! 😺👋
Termux | Automatically Start Frida Server on Rooted Android Phones | Easily Switch Between Version: ruclips.net/video/stFytf3YEH0/видео.html