Coffee Portal App

This project focused on testing the Coffee Portal mobile app for security vulnerabilities. Key findings included root/emulator detection bypass, hardcoded API keys, Insecure Direct Object References (IDOR), and critical business logic flaws that allowed unauthorized credit inflation and price manipulation.

The goal was to identify and exploit security weaknesses in mobile apps, demonstrating skills in bypassing authentication, API exploitation, and manipulating application behavior. This project basicly showcasing client-side vulnerabilities and offering remediation techniques for app security improvement.

Screenshots