Ostorlab: Mobile App Security Testing for Android and iOS

Tag

POC

Automating Security Research: AI Engine Exploits Complex Blind Code Injection

Precision beats payload spray using Ostorlab's AI engine to systematically land RCE on Titiler and proves exfiltration without a single stack trace.

Ostorlab Team


            Thu 04 September 2025

Security

AI-Powered Pentesting: A Deep Dive into Android Intent Redirection

This article showcases Ostorlab's AI Pentest Engine's process for analyzing an Android applicatio...

Ostorlab Team


                  Sun 31 August 2025

Security

Automating Security Research: AI Engine Exploits GCP Service Account Secret

This article presents a thorough, hands-on analysis and real-world exploitation of a hardcoded GC...

Ostorlab Team


                  Thu 28 August 2025

Security

Automating Security Research: AI Engine Exploits Report Portal XXE (CVE-2021-29620)

This article presents a thorough, hands-on analysis and proof of concept for exploiting an OOB XX...

Ostorlab Team


                  Thu 07 August 2025

Security

Automating Security Research: AI Engine Exploits Zulip Stored XSS (CVE-2025-52559)

This article presents a thorough, hands-on analysis and proof of concept for exploiting the stored XSS vulnerability CVE-2025-52559 in Zulip. It details how Ostorlab's AI-powered pentesting engine was used to automate the full cycle.

Ostorlab Team


                  Mon 28 July 2025

POC

Automating Security Research: AI Engine Exploits Complex Blind Code Injection

AI-Powered Pentesting: A Deep Dive into Android Intent Redirection

Automating Security Research: AI Engine Exploits GCP Service Account Secret

Automating Security Research: AI Engine Exploits Report Portal XXE (CVE-2021-29620)

Automating Security Research: AI Engine Exploits Zulip Stored XSS (CVE-2025-52559)

Subscribe to the Ostorlab Newsletter