Getting Started with Android App Testing with Genymotion

hey katie! thank you for your content you are really helping - i have one question - why is my google nexus 6 different from the demonstration? i have slightly different apps and cannot access - even after GApps? i had to go into network internet>internet>androidwifi> the little pencil in the top right of the box> roggle the advanced options carrot

I registered by your link

just seeing this now I LOVE IT keep up the good work katie😚

Can't intercept native mobile app like facebook. But able to intercept via browser. Tried SSLUnpinning with Xposed Installer but still can't intercept native facebook app traffic. Can somebody help? thanks

I have an iPhone but can’t jailbreak it maybe because my iOS version or because it’s an iPhone 12. So thinking about doing this instead for bug hunting. Is there way to use burp with iPhone without jail breaking?

Thanks for helping getting started with Android PT. Will surely share once i find a vaild bug. Thanks once again. Keep up the good work.

Cảm ơn bạn mong bạn ra nhiều video về testing android . Tôi là sinh viên an toàn thông tin đến từ Việt Nam <3

Hello guys I want to clone my phone one genymotion is that possible? Literally, I want to virtualize my phone.

Oh god thank u so muchhh ...u saved my like u saved d world for mee u n angelll lol thankkk u so muchh hahha !!!

Don't think you can intercept app traffic directly anymore without modifying network_security_config.xml.

This was really help full i watched a few videos about it, but you explained it very well and now its working finally , thankss

Awesome katie

After downloading, Genymotion is stuck at starting virtual device, does anyone have any idea how to solve it?

Thanks for this video :)

That's not bypassing ssl pining
You just installed certificate if the app encrypts the network internally you cannot intercept it through burp

I have't modify network when click to WiredSSID

Thx Zo Usefull

Love watching your videos...........!!!!!!
💓💓💓💓💓💓💓💓💓💓💓💓

anyone know why you cannot configure manual proxy settings in android os ver 7.0 and above? 6.0 os instructions don't work and the manual says to open a wifi edit button which is not there. blogs have said this was changed for os 7.0 and above.

Genymotion is not free, isn't there some free alternative?

Hello,is it illegal if i use free license of genymotion for bug bounty hunting ?

Hey !! What about SSL Pinning ?? Any idea about this ?? I lost my whole damn week but didnt find any solution to intercept APPLICATION traffic ..

thanks this video helped me setting my mobile env :)

Please make more videos into Android bug hunting

we need more video for android bug bounty

But the android version is 5 right?
So some apps won't be installed for testing ...

Wow cool, tysm ❤️❤️

hi katie
first of all a big thanks for your great videos, I've learned a lot from them :)
but sadly I have a problem with setting up the burp to intercept the apps data :(
I first tried to use genymotion but it didn't work because it just fails while installing Gapps so I used memu instead then installed the burp cert and it captures data while using browser but for apps it just returns TLS errors in dashboard (the client failed to negotiate a TLS connection to ...)
I don't know what to do, please help me I really want to start android hacking :(

Hi,
Katie your video realy help me. Thank you for such a good contents.

Just discovered your channel. Love your work! I'm about to sign up but I just want to clarify - are you tied to a single bug bounty platform? Just asking because from what I understand, different platforms can cater to different regions/industries.

katie you are awesome

Are u using Android phone for this testing

Your videos are really cool and awesome. Just love it. Whats your Twitter account? I would love to follow you there.

Can i use burp in my mobile phone without a pc?

hi katie wnted to ask i want to do both on ios and android bug bounty so is it necessary to have a mac for ios or an iphone is ok

Where is time stamps

Its all amazing BUT all traffic is encrypted as i guess with SSL, and even with Frida half traffic from different apps are encrypted, i think i don't know something but looks not cool.
If it's possible and you'll show how to do it, it will be great
Thx for video
Maybe i don't right, nevermind :D

Thank you so much for sharing 👍

Amazing info katie, thank you so much!!

Please make a video on Frida.

Been wanting to get into android for a while now, the video really helped! Thanks a lot !!
btw, could you also make a tutorial on how to disable ssl pinning on mobile applications ?

great content you are the best

can please anyone explain what is an endpoint i am kinda confuse

Thanks katie the video was amazing but I didn't understand the part in the end where you said google apps doesn't provide ssl bypass so why does yahoo have ssl bypass ? and in this way why don't other companies can do just like google so that no one can attack their application

My ooxe extension not displaying on burp suite.
But other extensions are displaying.
What's the problem??