Back to Projects
CGV Cinemas App
This project assessed the CGV Cinemas mobile app for security vulnerabilities, focusing on areas like hardcoded sensitive data, improper data validation, and weak SSL pinning. Key findings included hardcoded API keys, excessive permissions (e.g., access to contacts, location, and camera), and bypassable root/emulator detection.
The goal was to identify critical vulnerabilities and recommend solutions, such as removing hardcoded secrets, improving data validation, minimizing permissions, and enhancing SSL pinning and root detection, to ensure better security and protect user data.
Tools Used
JADX
Frida
Burp Suite
Android Studio
Screenshots