Bypassing SSL Pinning in Flutter Apps on ARM64
Binary patching libflutter.so to disable BoringSSL certificate verification when Frida gadget injection isn't viable.
Read Article →
Writing
Blog
Security research, technical writeups, and practical guides on offensive security, mobile pentesting, forensics, and AI-assisted auditing.
Anatomy of an Android Phishing APK Targeting Utility Users
Dissecting a malicious APK impersonating an electricity provider — infrastructure, exfiltration, and defence.
Read Article →Leveraging AI in Large-Scale Government Security Audits
Building an NLP and OCR pipeline to automate detection of exposed credentials and PII across thousands of government domains.
Read Article →