Configuring an Android Simulator to work with Burp Suite

Ever since the changes to the trusted certificate authority to Android Nougat, android applications that target API level 24 and above no longer trust user or admin-added CAs for secure connections.

My take on IDORs

Recently, I have been very much involved in doing some (minimal) bug hunting and discovering vulnerabilities. And man, the amount of IDORs that I’ve found on some of these platforms in quite insane!