Archives for January 2018

Exploiting Content Provider – #11 DIVA Solution

A content provider manages access to app data (user installed or default system app) securely. Content providers are primarily intended to be used by other (or self app) applications, which access a consistent, standard interface to data. For e.g. App-1 has a SQLite DB and if some data from App-1 is to be shared with App-2, […]

Access Control bypass using Intents with Data – #10 DIVA Solution

As we saw in previous post Access Control bypass using Intents – #9 DIVA Solution Android provides Intents in order to perform any IPC (Inter process communication) to launch some Activity/Service/Broadcast-Receiver. Here you would see along with invoking an Activity how to pass some data via Intents and bypassing Access control over there.   The video […]

Access Control bypass using Intents – #9 DIVA Solution

Android provides Intents in order to perform any IPC (Inter process communication). In easy terms if you want to launch some Activity/Service/Broadcast-Receiver or pass some data you can use Intents. You may want to refer http://nestedif.com/android-development/android-intent/ to get developers view on Intents. Implicit Intent allows user to choose a particular application out of available applications(like what […]