Start inside the application
Android reverse engineering reveals hidden functionality, unsafe deep links, exported components, WebView bridges and embedded credentials.
High-impact vulnerabilities hide in the connections between mobile apps, APIs, identity and cloud infrastructure. That is exactly where I look.
Independent vulnerability research across public and private programs.
A modern application is a network of trust decisions. Effective testing means moving through the whole system like a determined attacker would.
Android reverse engineering reveals hidden functionality, unsafe deep links, exported components, WebView bridges and embedded credentials.
Authorization, identity and business workflows are tested for assumptions that enable account takeover, data exposure and privilege escalation.
Infrastructure experience turns small clues into validated impact across internal services, IAM, metadata, storage and deployment systems.
Eight years in cloud infrastructure provides the architectural depth. More than nine years running businesses provides the product and commercial context.
Together, they make it easier to recognize when a technical weakness becomes a real operational, financial or customer risk.
Explore the complete research archive →Focused penetration testing and research for Android applications, web platforms and the APIs connecting everything together.
hello@mdpsecure.net ↗