Another vulnerable app on Android, covers topics:
- Communication issues
- Insecure communication
- HTTP
- HTTPS without cert validation
- Secure communication
- HTTPS
- Cert pinning
- Insecure communication
- Tapjacking
- Man in the disk
Malicious application which exploits weaknesses in the AVA:
- Tapjacking
- Man in the disk
- AwesomeGame, AwesomeGameFake - Dummy applications, assets in AVA and AMA, used to demonstrate Man in the disk vulnerability. Not for direct use.
- Icons used in the apps come from https://www.iconfinder.com/josyanimator