Scenario You’ve intercepted a suspicious Android app, that contains secret data. Your task is to reverse-engineer the app, uncover hidden data, and retrieve the flag. To solve this challenge, you’ll need to demonstrate your reverse engineering and basic Android penetration testing skills. Objective Find the flag hidden within the APK by reverse-engineering it Prerequisites Download the APK file Install APKTool for decompiling the APK Install JADX For reverse engineering and inspecting the Java code.

Scenario You have access to an Android app called EncryptedVault.apk, designed to store confidential information securely using encryption. However, if exploited, multiple flaws in the app’s design can grant unauthorized access to sensitive data stored within the app. The app uses a custom encryption algorithm, stores sensitive data in shared preferences, and sends encrypted data to a remote server. Your task is to reverse engineer the app, analyze its encryption scheme, exploit multiple vulnerabilities, and retrieve the hidden flags.