Too Long; Didn't Read
Pedro Costa hacked a chain of barber shops app to get free haircuts for life. The app has a simple purpose: Users can book haircuts on the available shops and per each 10 haircuts, the user gets one for free. The developers' disregard of every kind of security best practices resulted in something that, in just a matter of a couple of hours, I was able to decompile, reverse-engineer and identify several vulnerabilities that anyone can exploit to achieve what would be every hacker's life-pursuit dream. Here, I'll walk you through the whole hacking process.
Share Your Thoughts