Session 1: Overview of common Android app vulnerabilities

Session 2: Setting up a bug bounty program for your app

Sebastian Porst

Engineering Manager

Google Play Protect

Sebastian is an engineering manager on Google Play Protect, Google’s program for keeping Google Play free of malware and vulnerable apps. He has been working as a malware analyst, software engineer, and manager on the Google Play Protect team for 8 years.

twitter-logo-button.png
Abstract

Session 1: In this presentation I will be giving an overview of common vulnerabilities that security researchers find in top apps on Google Play. I will give information about these vulnerabilities, how to find them, and how to fix them. The information in this talk is based on my work on Google Play’s Security Rewards Program, a collaboration with HackerOne, in which we reward security researchers for security vulnerabilities they find in top applications on Google Play.

Session 2: In this presentation I will be giving an overview of how to plan and execute on a bug bounty program for your Android app. The information in this talk is based on my work on Google Play’s Security Rewards Program, a collaboration with HackerOne, in which we reward security researchers for security vulnerabilities they find in top applications on Google Play.

  • Grey Facebook Icon
  • Grey Twitter Icon
  • Grey YouTube Icon

Droidcon is a registered trademark of Mobile Seasons GmbH