Insecurity Through Obscurity - Exploiting Obfuscated Android APKs

Explore Android APK security vulnerabilities in this 53-minute conference talk by Matt Nerdwell at Bugcrowd's #Levelup0x07 event. Discover how code obfuscation techniques used to protect Android applications can inadvertently create opportunities for bug bounty hunters. Learn simple methods to identify open source libraries in obfuscated APKs and gain insights into new research revealing how common obfuscation practices may lead to unexpected Java object deserialization vulnerabilities. Benefit from Nerdwell's 20 years of experience in IT systems and regulated industries as he shares his passion for internet security and helping others advance their infosec careers.