Welcome to INTEGRITY labs, the repository of public security research performed by our team.
Here you can find advisories, articles and tools we have published.

Featured article:

Reviewing Android Webviews fileAccess attack vectors.

Introduction WebViews are a crucial part of many mobile applications and there are some security aspects that need to be taken into account when using them. File access is one of those aspects. For the implementation of some checks in our security tool Droidstatx, I’ve spent some time understanding all the details and noticed that not all attack vectors are very clear, specially in their requirements. WebView file access is enabled by default. Since API 3 (Cupcake 1.5)...

read more »