InjuredAndroid - A vulnerable Android application with CTF examples based on bug bounty findings, exploitation concepts, and pure creativity. Setup for a physical device Download the latest debug or release injuredandroid.apk from the releases. Enable USB debugging on your Android test phone. Connect your phone and your pc with a usb cable. Install via adb. adb install InjuredAndroid.apk. Note: You need to use the absolute path to the .apk file or be in the same directory. Setup for an Android Emulator using Android Studio Download the apk file. Start the emulator from Android Studio (I recommend downloading an emulator with Google APIs so root adb can be enabled). Drag and drop the .apk file on the emulator and InjuredAndroid.apk will install. Build from source Build steps in progress. The flutter module makes this slightly more complicated. Tips and CTF Overview Decompiling the Android app is highly recommended. XSSTEST is just for....