应用安全检测报告
应用安全检测报告,支持文件搜索、内容检索和AI代码分析
移动应用安全检测报告
Atlys v4.8.7
45
安全评分
安全基线评分
45/100
中风险
综合风险等级
风险等级评定
- A
- B
- C
- F
应用存在一定安全风险,建议优化
漏洞与安全项分布
8
高危
28
中危
5
信息
3
安全
隐私风险评估
6
第三方跟踪器
高隐私风险
检测到大量第三方跟踪器
检测结果分布
高危安全漏洞
8
中危安全漏洞
28
安全提示信息
5
已通过安全项
3
重点安全关注
0
高危安全漏洞 App 链接 assetlinks.json 文件未找到
[android:name=com.atlys.android.ui.main.MainActivity][android:host=http://atlys.com] App Link 资产验证 URL(http://atlys.com/.well-known/assetlinks.json)未找到或配置不正确。(状态码:301)。应用程序链接允许用户通过 Web URL 或电子邮件直接跳转到移动应用。如果 assetlinks.json 文件缺失或主机/域配置错误,恶意应用可劫持此类 URL,导致网络钓鱼攻击,泄露 URI 中的敏感信息(如 PII、OAuth 令牌、魔术链接/重置令牌等)。请务必通过托管 assetlinks.json 文件并在 Activity 的 intent-filter 中设置 [android:autoVerify="true"] 来完成 App Link 域名验证。
高危安全漏洞 App 链接 assetlinks.json 文件未找到
[android:name=com.atlys.android.ui.main.MainActivity][android:host=https://atlys.com] App Link 资产验证 URL(https://atlys.com/.well-known/assetlinks.json)未找到或配置不正确。(状态码:301)。应用程序链接允许用户通过 Web URL 或电子邮件直接跳转到移动应用。如果 assetlinks.json 文件缺失或主机/域配置错误,恶意应用可劫持此类 URL,导致网络钓鱼攻击,泄露 URI 中的敏感信息(如 PII、OAuth 令牌、魔术链接/重置令牌等)。请务必通过托管 assetlinks.json 文件并在 Activity 的 intent-filter 中设置 [android:autoVerify="true"] 来完成 App Link 域名验证。
高危安全漏洞 SSL的不安全实现。信任所有证书或接受自签名证书是一个关键的安全漏洞。此应用程序易受MITM攻击
SSL的不安全实现。信任所有证书或接受自签名证书是一个关键的安全漏洞。此应用程序易受MITM攻击 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05g-Testing-Network-Communication.md#android-network-apis Files: ue/c.java, line(s) 19,20,5
高危安全漏洞 已启用远程WebView调试
已启用远程WebView调试 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04c-Tampering-and-Reverse-Engineering.md#debugging-and-tracing Files: com/plaid/link/Plaid$maybeSetWebviewDebugging$2.java, line(s) 40,8
高危安全漏洞 如果一个应用程序使用WebView.loadDataWithBaseURL方法来加载一个网页到WebView,那么这个应用程序可能会遭受跨站脚本攻击
如果一个应用程序使用WebView.loadDataWithBaseURL方法来加载一个网页到WebView,那么这个应用程序可能会遭受跨站脚本攻击 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#static-analysis-7 Files: com/freshchat/consumer/sdk/activity/ArticleDetailActivity.java, line(s) 390,17 com/freshchat/consumer/sdk/activity/BotFaqDetailsActivity.java, line(s) 118,12 com/freshchat/consumer/sdk/activity/FAQDetailsActivity.java, line(s) 137,11 com/razorpay/B$$W$.java, line(s) 202,207,16,17 in/juspay/hypersdk/core/DynamicUI.java, line(s) 167,357,10 in/juspay/hypersdk/safe/JuspayWebView.java, line(s) 56,9,10 xk/m.java, line(s) 52,9
高危安全漏洞 该文件是World Writable。任何应用程序都可以写入文件
该文件是World Writable。任何应用程序都可以写入文件 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#testing-local-storage-for-sensitive-data-mstg-storage-1-and-mstg-storage-2 Files: in/juspay/hypersdk/data/KeyValueStore.java, line(s) 13
高危安全漏洞 应用程序使用带PKCS5/PKCS7填充的加密模式CBC。此配置容易受到填充oracle攻击。
应用程序使用带PKCS5/PKCS7填充的加密模式CBC。此配置容易受到填充oracle攻击。 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: Wg/d.java, line(s) 110,110
高危安全漏洞 应用程序包含隐私跟踪程序
此应用程序有多个6隐私跟踪程序。跟踪器可以跟踪设备或用户,是终端用户的隐私问题。
中危安全漏洞 Service (com.atlys.android.notification.NotificationService) 未受保护。
[android:exported=true] 检测到 Service 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.plaid.internal.LinkRedirectActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.plaid.internal.link.LinkActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.plaid.internal.link.TransparentLinkActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.stripe.android.link.LinkRedirectHandlerActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.stripe.android.payments.StripeBrowserProxyReturnActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Broadcast Receiver (com.razorpay.RzpTokenReceiver) 未受保护。
[android:exported=true] 检测到 Broadcast Receiver 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.razorpay.CheckoutActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.google.firebase.auth.internal.GenericIdpActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Activity (com.google.firebase.auth.internal.RecaptchaActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Service (com.google.android.gms.auth.api.signin.RevocationBoundService) 受权限保护,但应检查权限保护级别。
Permission: com.google.android.gms.auth.api.signin.permission.REVOCATION_NOTIFICATION [android:exported=true] 检测到 Service 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Activity (in.juspay.hypersdk.core.CustomtabResult) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Broadcast Receiver (com.google.firebase.iid.FirebaseInstanceIdReceiver) 受权限保护,但应检查权限保护级别。
Permission: com.google.android.c2dm.permission.SEND [android:exported=true] 检测到 Broadcast Receiver 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Service (androidx.work.impl.background.systemjob.SystemJobService) 受权限保护,但应检查权限保护级别。
Permission: android.permission.BIND_JOB_SERVICE [android:exported=true] 检测到 Service 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Broadcast Receiver (androidx.work.impl.diagnostics.DiagnosticsReceiver) 受权限保护,但应检查权限保护级别。
Permission: android.permission.DUMP [android:exported=true] 检测到 Broadcast Receiver 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 Activity (androidx.compose.ui.tooling.PreviewActivity) 未受保护。
[android:exported=true] 检测到 Activity 已导出,未受任何权限保护,任意应用均可访问。
中危安全漏洞 Broadcast Receiver (androidx.profileinstaller.ProfileInstallReceiver) 受权限保护,但应检查权限保护级别。
Permission: android.permission.DUMP [android:exported=true] 检测到 Broadcast Receiver 已导出并受未在本应用定义的权限保护。请在权限定义处核查其保护级别。若为 normal 或 dangerous,恶意应用可申请并与组件交互;若为 signature,仅同证书签名应用可访问。
中危安全漏洞 文件可能包含硬编码的敏感信息,如用户名、密码、密钥等
文件可能包含硬编码的敏感信息,如用户名、密码、密钥等 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#checking-memory-for-sensitive-data-mstg-storage-10 Files: D0/C0289f0.java, line(s) 25 D0/C0458f0.java, line(s) 25 Ek/j.java, line(s) 129 Ff/C0630e.java, line(s) 49 Ff/C3476e.java, line(s) 53 G9/C2045T.java, line(s) 36 Ge/b.java, line(s) 23 Gh/C0141b1.java, line(s) 44 Gh/C0175n.java, line(s) 84 Gh/C0711b1.java, line(s) 47 Gh/C0745n.java, line(s) 91 Gh/V1.java, line(s) 51 Gi/C0850y.java, line(s) 66 Gi/C3726y.java, line(s) 74 J6/e.java, line(s) 47 Ja/h.java, line(s) 43 Kf/l.java, line(s) 70 La/C2617q.java, line(s) 41 La/d.java, line(s) 37 La/s.java, line(s) 85 La/z.java, line(s) 94 O8/B0.java, line(s) 75 O8/C0487o.java, line(s) 93 O8/C1023o.java, line(s) 95 Oi/C0375q.java, line(s) 61 Oi/C1119p.java, line(s) 68 P8/A.java, line(s) 114 P8/l.java, line(s) 36 Uh/d.java, line(s) 95 Uh/e.java, line(s) 94,94 Uh/f.java, line(s) 94,94 Vh/C0449m0.java, line(s) 43 Vh/C0451n0.java, line(s) 43 Vh/C1449m0.java, line(s) 45 Vh/C1451n0.java, line(s) 45 Wh/C1528f.java, line(s) 42 Wh/n.java, line(s) 64 Yi/C1215a.java, line(s) 44 Yi/C6837a.java, line(s) 47 com/atlys/android/data/model/CheckoutIntentResponse.java, line(s) 165 com/atlys/android/data/model/EphemeralResponse.java, line(s) 50 com/atlys/android/data/model/LegacyPaymentReceiptResponse.java, line(s) 158 com/atlys/android/data/model/RemoteVisaRequirement.java, line(s) 2316,182,600,348 com/atlys/android/domain/model/VisaRequirement.java, line(s) 1872,186,3253 com/freshchat/consumer/sdk/beans/fragment/TemplateFragment.java, line(s) 40 com/plaid/link/configuration/LinkPublicKeyConfiguration.java, line(s) 482 com/posthog/internal/PostHogBatchEvent.java, line(s) 95 com/razorpay/AnalyticsConstants.java, line(s) 110,124,62 com/razorpay/BaseConstants.java, line(s) 25,32 com/razorpay/OtpElfData.java, line(s) 7 f3/C1853a.java, line(s) 90 f3/C3380a.java, line(s) 91 g5/C1983h.java, line(s) 162 g5/C3555h.java, line(s) 162 j7/N.java, line(s) 152 j7/O.java, line(s) 98 j7/T0.java, line(s) 97 j7/U.java, line(s) 87 l8/C2588d.java, line(s) 41 l8/C4662d.java, line(s) 41 l8/t.java, line(s) 60,60 lf/h.java, line(s) 32 nf/x.java, line(s) 42 p001if/C0733a.java, line(s) 60 p004if/C4026a.java, line(s) 64 qi/e.java, line(s) 31 r8/C0587o.java, line(s) 28 r8/C1290o.java, line(s) 28
中危安全漏洞 不安全的Web视图实现。可能存在WebView任意代码执行漏洞
不安全的Web视图实现。可能存在WebView任意代码执行漏洞 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#testing-javascript-execution-in-webviews-mstg-platform-5 Files: com/atlys/android/bolo/BoloWebviewFragment.java, line(s) 179,171 com/atlys/android/usa/ui/appointmentFound/MockInterviewWebviewFragment.java, line(s) 711,700 com/cashfree/pg/core/api/ui/BaseCFWebView.java, line(s) 43,38 com/razorpay/BaseUtils.java, line(s) 835,158 in/juspay/hypersdk/core/DynamicUI.java, line(s) 105,128,196,103 in/juspay/hypersdk/safe/Godel.java, line(s) 336,575,569 ua/C3667a.java, line(s) 56,49 ua/C6244a.java, line(s) 57,50
中危安全漏洞 应用程序使用不安全的随机数生成器
应用程序使用不安全的随机数生成器 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#weak-random-number-generators Files: B0/C0269t1.java, line(s) 33 Be/e.java, line(s) 56 Cf/o.java, line(s) 15 Co/C2804f.java, line(s) 21 Co/C2808j.java, line(s) 10 Co/j.java, line(s) 7 D0/C0319v.java, line(s) 28 D0/C0488v.java, line(s) 46 Dk/B1.java, line(s) 10 Dk/C0066c0.java, line(s) 18 Dk/C0072e0.java, line(s) 3 Dk/C0546c0.java, line(s) 23 Dk/C0552e0.java, line(s) 3 Dk/P0.java, line(s) 18 Ek/n.java, line(s) 46 G/f.java, line(s) 17 Jf/e.java, line(s) 8 K3/C2455y.java, line(s) 31 K3/C4455F.java, line(s) 28 K3/C4488y.java, line(s) 35 Mn/c.java, line(s) 4 Oe/i.java, line(s) 3 Pl/a.java, line(s) 4 Vj/o.java, line(s) 24 com/freshchat/consumer/sdk/service/c/aa.java, line(s) 8 com/freshchat/consumer/sdk/util/cc.java, line(s) 30 i3/p.java, line(s) 24 j$/util/concurrent/ThreadLocalRandom.java, line(s) 10 kk/m.java, line(s) 6 kk/w.java, line(s) 28 l3/h.java, line(s) 9 ol/b.java, line(s) 3 r3/X.java, line(s) 4 ue/f.java, line(s) 5
中危安全漏洞 应用程序创建临时文件。敏感信息永远不应该被写进临时文件
应用程序创建临时文件。敏感信息永远不应该被写进临时文件 Files: M3/y.java, line(s) 318 com/atlys/android/usa/ui/appointmentFound/MockInterviewWebviewFragment.java, line(s) 651 com/freshchat/consumer/sdk/util/as.java, line(s) 198 com/freshchat/consumer/sdk/util/co.java, line(s) 23 com/rnmaps/maps/AsyncTaskC0694a.java, line(s) 19 com/rnmaps/maps/AsyncTaskC2939a.java, line(s) 23 com/rnmaps/maps/r.java, line(s) 38 e/l.java, line(s) 149
中危安全漏洞 应用程序使用SQLite数据库并执行原始SQL查询。原始SQL查询中不受信任的用户输入可能会导致SQL注入。敏感信息也应加密并写入数据库
应用程序使用SQLite数据库并执行原始SQL查询。原始SQL查询中不受信任的用户输入可能会导致SQL注入。敏感信息也应加密并写入数据库 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04h-Testing-Code-Quality.md#injection-flaws-mstg-arch-2-and-mstg-platform-2 Files: A/h.java, line(s) 20,193,205 Cf/h.java, line(s) 4,27 G4/C1974x.java, line(s) 9,405 G4/C3546x.java, line(s) 10,630 He/g.java, line(s) 15,16,17,52,454 Jf/C0744A.java, line(s) 4,5,30,39,57 Jf/C0745B.java, line(s) 6,22,68 Jf/C4376A.java, line(s) 4,5,32,41,59 Jf/v.java, line(s) 4,5,19 Jf/x.java, line(s) 4,5,6,62 Sc/d.java, line(s) 8,65 Sc/i.java, line(s) 4,55 Tc/k.java, line(s) 3,11,12,13,14,15,18,19,20,23,26,27,28,31,32,33,34,35,38,41,42,43 Tc/l.java, line(s) 5,6,41 Y4/C6683b.java, line(s) 4,54,79 bb/c.java, line(s) 8,9,39,40,41,42,74,110,111,112,113,114 com/freshchat/consumer/sdk/c/b.java, line(s) 6,7,8,32,65,74 com/freshchat/consumer/sdk/c/e.java, line(s) 6,321 com/freshchat/consumer/sdk/c/k.java, line(s) 6,170 com/freshchat/consumer/sdk/c/l.java, line(s) 6,128,174 com/freshchat/consumer/sdk/c/n.java, line(s) 6,63,130,309,462 com/freshchat/consumer/sdk/c/w.java, line(s) 7,8,130,137,302,389 g3/AbstractC1941b.java, line(s) 7,45 g3/AbstractC3513b.java, line(s) 7,46 i3/e.java, line(s) 6,66,67 i3/j.java, line(s) 7,8,188,220,221
中危安全漏洞 SHA-1是已知存在哈希冲突的弱哈希
SHA-1是已知存在哈希冲突的弱哈希 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: Oe/l.java, line(s) 91 Tf/C6183b.java, line(s) 72 Tg/e.java, line(s) 71,71 We/g.java, line(s) 114
中危安全漏洞 IP地址泄露
IP地址泄露 Files: Ko/InterfaceC0033a.java, line(s) 6,7 Ko/InterfaceC4619a.java, line(s) 7,9 Lo/InterfaceC0034a.java, line(s) 16 bo/e.java, line(s) 31,32,25,33,34,35,18 mo/InterfaceC0035a.java, line(s) 16,9,17,18,19,10,11,12,13,14,15,20 mo/InterfaceC4916a.java, line(s) 17,10,18,19,20,11,12,13,14,15,16,21 no/InterfaceC0036a.java, line(s) 84,105,98,52,53,54,55,56,57,154,153,151,152,133,134 no/InterfaceC5068a.java, line(s) 86,107,100,54,55,56,57,58,59,156,155,153,154,135,136
中危安全漏洞 应用程序可以读取/写入外部存储器,任何应用程序都可以读取写入外部存储器的数据
应用程序可以读取/写入外部存储器,任何应用程序都可以读取写入外部存储器的数据 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#external-storage Files: com/atlys/android/usa/ui/appointmentFound/MockInterviewWebviewFragment.java, line(s) 651 com/freshchat/consumer/sdk/util/as.java, line(s) 18 com/freshchat/consumer/sdk/util/cc.java, line(s) 149 com/rajat/pdfviewer/PdfViewerActivity.java, line(s) 397
中危安全漏洞 可能存在跨域漏洞。在 WebView 中启用从 URL 访问文件可能会泄漏文件系统中的敏感信息
可能存在跨域漏洞。在 WebView 中启用从 URL 访问文件可能会泄漏文件系统中的敏感信息 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05h-Testing-Platform-Interaction.md#static-analysis-6 Files: com/atlys/android/bolo/BoloWebviewFragment.java, line(s) 173,171 com/atlys/android/usa/ui/appointmentFound/MockInterviewWebviewFragment.java, line(s) 702,700 in/juspay/hypersdk/safe/Godel.java, line(s) 582,569 ua/C3667a.java, line(s) 51,49 ua/C6244a.java, line(s) 52,50
中危安全漏洞 MD5是已知存在哈希冲突的弱哈希
MD5是已知存在哈希冲突的弱哈希 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04g-Testing-Cryptography.md#identifying-insecure-andor-deprecated-cryptographic-algorithms-mstg-crypto-4 Files: Am/C0027g.java, line(s) 947 Am/C0088g.java, line(s) 973 D8/i.java, line(s) 657 com/freshchat/consumer/sdk/util/cc.java, line(s) 201 gj/v.java, line(s) 187 in/juspay/hypersdk/security/EncryptionHelper.java, line(s) 153,231
中危安全漏洞 此应用可能包含硬编码机密信息
从应用程序中识别出以下机密确保这些不是机密或私人信息 凭证信息=> "com.google.android.geo.API_KEY" : "AIzaSyCaJg7EiVBaCCz4Obk3aSjsrnUd-AAufgU" 凭证信息=> "io.branch.sdk.BranchKey" : "key_live_agH3Q3sKOYSQiA4LYMmVJbbdDAfYieRD" 凭证信息=> "io.branch.sdk.BranchKey.test" : "key_test_ceG3G9sMJ2PUnF0Q7NvmEgdaCulYmpKU" "android.credentials.TYPE_PASSWORD_CREDENTIAL" : "Password" "androidx.credentials.TYPE_PUBLIC_KEY_CREDENTIAL" : "Passkey" "com.google.firebase.crashlytics.mapping_file_id" : "02738fa06d5d4aac8ca4fb6d2b572b61" "facebook_app_id" : "1005259290279377" "facebook_client_token" : "9cf32bc2ad45a09fdef07d2a68e0efe3" "firebase_database_url" : "https://vdcapp-54939.firebaseio.com" "freshchat_file_provider_authority" : "com.atlys.android.provider" "google_api_key" : "AIzaSyCaJg7EiVBaCCz4Obk3aSjsrnUd-AAufgU" "google_app_id" : "1:729591679858:android:7a99b0625547f7d0006beb" "google_crash_reporting_api_key" : "AIzaSyCaJg7EiVBaCCz4Obk3aSjsrnUd-AAufgU" "plaid_sentry_android_consumer_portal_api_key" : "2264cb9517ec4ddab918b90dd4126ae2" "plaid_sentry_android_link_sdk_api_key" : "e7bf46248ac14774aecfe3a24811e6b4" bbbb42d6a8058409381c7dda80a54606 2e83472a55342bcdef05749cf43d2bd7 PHN2ZyBmaWxsPSIjRkZGRkZGIiBoZWlnaHQ9IjI0IiB2aWV3Qm94PSIwIDAgMjQgMjQiIHdpZHRoPSIyNCIgeG1sbnM9Imh0dHA6Ly93d3cudzMub3JnLzIwMDAvc3ZnIj4gICAgPHBhdGggZD0iTTguNTkgMTYuMzRsNC41OC00LjU5LTQuNTgtNC41OUwxMCA1Ljc1bDYgNi02IDZ6Ii8+ICAgIDxwYXRoIGQ9Ik0wLS4yNWgyNHYyNEgweiIgZmlsbD0ibm9uZSIvPjwvc3ZnPg== 39402006196394479212279040100143613805079739270465446667946905279627659399113263569398956308152294913554433653942643 a9e001e2764b9853e98cf5773a605c0f c9bccb07-eb36-458c-84d3-7f9881fc4313 aXNccyhcZHs2LDh9KXwoXGR7Niw4fSlcc2lzfGlzXHMoXGR7NH0p 115792089237316195423570985008687907853269984665640564039457584007908834671663 bd97115d0a01283392c6367d79c1a07f c103703e120ae8cc73c9248622f3cd1e b05e367cc67e6caaadf5a14d5c557670 df6b721c8b4d3b6eb44c861d4415007e5a35fc95 36134250956749795798585127919587881956611106672985015071877198253568414405109 2f76e7f17bb3527a495d200f54878584 55066263022277343669578718895168534326250603453777594175500187360389116729240 deca87e736574c5c83c07314051fd93a c56fb7d591ba6704df047fd98f535372fea00211 115792089210356248762697446949407573529996955224135760342422259061068512044369 365db13b8c748782f38e4c9e689e2188 41058363725152142129326129780047268409114441015993725554835256314039467401291 39402006196394479212279040100143613805079739270465446667948293404245721771496870329047266088258938001861606973112319 32670510020758816978083085130507043184471273380659243275938904335757337482424 0c9d0cddf8078163ecb4419febc70287 9cf6320d4b9bc616835ea2695a24ab44 1093849038073734274511112390766805569936207598951683748994586394495953116150735016013708737573759623248592132296706313309438452531591012912142327488478985984 39402006196394479212279040100143613805079739270465446667948293404245721771496870329047266088258938001861606973112316 80ce5ee91cabb507ba22ea0e2984c000 c129855fe94d8e15c3811fe0727fdcbe f441360f55328407e190405ad343d8f6 115792089237316195423570985008687907852837564279074904382605163141518161494337 bd79c55e5100499bee35bba48c45e027 239938f8-4457-4d16-831b-fae203a00721 9ab14ba198adb2891ee486ece3da36c7 3757180025770020463545507224491183603594455134769762486694567779615544477440556316691234405012945539562144444537289428522585666729196580810124344277578376784 oiGr5rHYDOioGuSM8opvqe4TtCidBRb4 2661740802050217063228768716723360960729859168756973147706671368418802944996427808491545080627771902352094241225065558662157113545570916814161637315895999846 d6fc4020-abf8-4469-890d-fbe1c0bb6af8 cc2751449a350f668590264ed76692694a80308a 78e12fc00c17ff98bbb76df7c7b1459f 6864797660130609714981900799081393217269435300143305409394463459185543183397655394245057746333217197532963996371363321113864768612440380340372808892707005449 3b906e5e-2356-455b-84d6-5f118d548144 5447b05c-0f23-40d5-85dc-6941dd57eace 26247035095799689268623156744566981891852923491109213387815615900925518854738050089022388053975719786650872476732087 470fa2b4ae81cd56ecbcda9735803434cec591fa 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 9b8f518b086098de3d77736f9458a3d2f6f95a37 6864797660130609714981900799081393217269435300143305409394463459185543183397656052122559640661454554977296311391480858037121987999716643812574028291115057151 0763e610ca51fa210791c3384611affa 73463f9d-70de-41f8-857a-58590bdd5903 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 0b368dfa-ad98-4c14-9a10-9710522f219f 90bd96d1c0b3dbe341cc5a33f373183a 8a3c4b262d721acd49a4bf97d5213199c86fa2b9 d3ed39ba-87c1-4c28-81d7-5ebe42a188d5 602b7fbb-b876-4d20-aeea-dc7c14332d5c dcb428fea25c40e7b99f81ae5981ee6a 8138e8a0fcf3a4e84a771d40fd305d7f4aa59306d7251de54d98af8fe95729a1f73d893fa424cd2edc8636a6c3285e022b0e3866a565ae8108eed8591cd4fe8d2ce86165a978d719ebf647f362d33fca29cd179fb42401cbaf3df0c614056f9c8f3cfd51e474afb6bc6974f78db8aba8e9e517fded658591ab7502bd41849462f 115792089210356248762697446949407573530086143415290314195533631308867097853948 871e53df88287454fc9e2c3c81f0afe8 b894127a-61b2-4a53-b36f-5b91f21eb260 d552f5f4-cc75-45ed-9931-4335efba2758 82bad1bb1c91404af71b61a58c466f53 7Ppkk121fVLAaKdjRL9rTRhNOivyOxzh deeb2e7b457727cd16d32d68ae8fd1d2 72de740d761ee75e84979f3a818f900e 6864797660130609714981900799081393217269435300143305409394463459185543183397656052122559640661454554977296311391480858037121987999716643812574028291115057148 294fc2f7fb0e400db7a6d59981fe81e4 258EAFA5-E914-47DA-95CA-C5AB0DC85B11 a4b7452e2ed8f5f191058ca7bbfd26b0d3214bfc 8325710961489029985546751289520108179287853048861315594709205902480503199884419224438643760392947333078086511627871 115792089210356248762697446949407573530086143415290314195533631308867097853951 27580193559959705877849011840389048093056905856361568521428707301988689241309860865136260764883745107765439761230575 2438bce1ddb7bd026d5ff89f598b3b5e5bb824b3 718c1936d6cb2c644cb50d380f8230d5 48439561293906451759052585252797914202762949526041747995844080717082404635286 Lsm6wqnk8QcNgreVaoShMDSPbxXWxraaiugfFtRiWqF PD94bWwgdmVyc2lvbj0iMS4wIiBlbmNvZGluZz0idXRmLTgiPz48c3ZnIHZlcnNpb249IjEuMSIgaWQ9IkxheWVyXzEiIHhtbG5zPSJodHRwOi8vd3d3LnczLm9yZy8yMDAwL3N2ZyIgeG1sbnM6eGxpbms9Imh0dHA6Ly93d3cudzMub3JnLzE5OTkveGxpbmsiIHg9IjBweCIgeT0iMHB4IiB2aWV3Qm94PSIwIDAgMTYwIDMzIiBzdHlsZT0iZW5hYmxlLWJhY2tncm91bmQ6bmV3IDAgMCAxNjAgMzM7IiB4bWw6c3BhY2U9InByZXNlcnZlIj48c3R5bGUgdHlwZT0idGV4dC9jc3MiPi5zdDB7ZmlsbDojMkQyRDJEO308L3N0eWxlPjxnPjxwYXRoIGNsYXNzPSJzdDAiIGQ9Ik00OS42LDE0LjZjLTAuNCwwLTAuOCwwLjItMSwwLjVjLTAuMiwwLjQtMC40LDAuOS0wLjQsMS41YzAsMC43LDAuMSwxLjIsMC40LDEuNWMwLjIsMC4zLDAuNiwwLjUsMSwwLjVjMC41LDAsMC45LTAuMSwxLjEtMC40YzAuMi0wLjMsMC40LTAuOCwwLjQtMS40di0wLjJjMC0wLjctMC4xLTEuMy0wLjQtMS42QzUwLjUsMTQuNyw1MC4xLDE0LjYsNDkuNiwxNC42eiIvPjxwYXRoIGNsYXNzPSJzdDAiIGQ9Ik04Ni4zLDE3LjNjLTAuMiwwLjEtMC40LDAuNS0wLjcsMS4xYy0wLjMsMC42LTAuMywwLjktMC4yLDFjMC4xLDAuMSwwLjUsMC4yLDEuMSwwLjJjMC4zLDAsMC41LDAsMC43LDBjMC4xLDAsMC4zLDAsMC41LDBjMC4yLDAsMC4zLTAuMSwwLjQtMC4xYzAuMS0wLjEsMC4yLTAuMSwwLjMtMC4yYzAuMS0wLjEsMC4yLTAuMiwwLjItMC40bDAuOC0xLjdsLTEuOCwwQzg2LjksMTcuMSw4Ni41LDE3LjEsODYuMywxNy4zeiIvPjxwYXRoIGNsYXNzPSJzdDAiIGQ9Ik04MC42LDExLjNsLTIuNCwwbC0xLjQsMy4ybDIuNCwwYzAuNywwLDEuMi0wLjEsMS41LTAuM2MwLjMtMC4yLDAuNi0wLjUsMC44LTFsMC40LTAuOGMwLjItMC40LDAuMi0wLjcsMC0wLjlDODEuNiwxMS40LDgxLjIsMTEuMyw4MC42LDExLjN6Ii8+PHBhdGggY2xhc3M9InN0MCIgZD0iTTQzLjksMTQuNmMtMC40LDAtMC43LDAuMS0xLDAuNGMtMC4yLDAuMi0wLjQsMC42LTAuNCwxaDIuNmMwLTAuNC0wLjEtMC44LTAuMy0xQzQ0LjYsMTQuNyw0NC4zLDE0LjYsNDMuOSwxNC42eiIvPjxwYXRoIGNsYXNzPSJzdDAiIGQ9Ik0yMC4yLDE0LjZjLTAuNSwwLTAuOSwwLjItMS4xLDAuNWMtMC4zLDAuMy0wLjQsMC44LTAuNCwxLjVjMCwwLjcsMC4xLDEuMiwwLjQsMS41YzAuMywwLjMsMC42LDAuNSwxLjEsMC41YzAuNSwwLDAuOS0wLjIsMS4xLTAuNWMwLjMtMC4zLDAuNC0wLjksMC40LTEuNWMwLTAuNy0wLjEtMS4yLTAuNC0xLjVDMjEuMSwxNC44LDIwLjgsMTQuNiwyMC4yLDE0LjZ6Ii8+PHBhdGggY2xhc3M9InN0MCIgZD0iTTEwNy40LDEzLjdjLTAuNywwLTEuMiwwLjEtMS42LDAuM2MtMC4zLDAuMi0wLjYsMC41LTAuOCwxbC0xLjUsMy4zYy0wLjIsMC41LTAuMiwwLjgtMC4xLDFjMC4yLDAuMiwwLjYsMC4zLDEuMywwLjNjMC43LDAsMS4zLTAuMSwxLjYtMC4zYzAuMy0wLjIsMC42LTAuNSwwLjgtMWwxLjUtMy4zYzAuMi0wLjUsMC4yLTAuOCwwLjEtMUMxMDguNiwxMy44LDEwOC4yLDEzLjcsMTA3LjQsMTMuN3oiLz48cGF0aCBjbGFzcz0ic3QwIiBkPSJNMTUuMywxMy4yYy0wLjMtMC4yLTAuOC0wLjMtMS40LTAuM0gxM3YyLjdoMC43YzAuNywwLDEuMi0wLjEsMS42LTAuM2MwLjMtMC4yLDAuNS0wLjYsMC41LTEuMUMxNS43LDEzLjgsMTUuNiwxMy41LDE1LjMsMTMuMnoiLz48cGF0aCBjbGFzcz0ic3QwIiBkPSJNMzQuMSwxNC42Yy0wLjQsMC0wLjcsMC4xLTEsMC40Yy0wLjIsMC4yLTAuNCwwLjYtMC40LDFoMi42YzAtMC40LTAuMS0wLjgtMC4zLTFDMzQuOCwxNC43LDM0LjUsMTQuNiwzNC4xLDE0LjZ6Ii8+PHBhdGggY2xhc3M9InN0MCIgZD0iTTU4LjcsMTQuNmMtMC41LDAtMC45LDAuMS0xLjEsMC40Yy0wLjIsMC4zLTAuMywwLjgtMC4zLDEuNmMwLDAuNywwLjEsMS4zLDAuNCwxLjZjMC4yLDAuMywwLjYsMC41LDEuMSwwLjVjMC41LDAsMC44LTAuMiwxLTAuNWMwLjItMC4zLDAuNC0wLjksMC40LTEuNWMwLTAuNy0wLjEtMS4yLTAuNC0xLjVDNTkuNiwxNC44LDU5LjIsMTQuNiw1OC43LDE0LjZ6Ii8+PHBhdGggY2xhc3M9InN0MCIgZD0iTTE1Ni45LDAuMkgzLjFDMS40LDAuMiwwLDEuNiwwLDMuNHYyNi41QzAsMzEuNiwxLjQsMzMsMy4xLDMzaDE1My43YzEuNywwLDMuMS0xLjQsMy4xLTMuMVYzLjRDMTYwLDEuNiwxNTguNiwwLjIsMTU2LjksMC4yeiBNMTYsMTZjLTAuNSwwLjQtMS4zLDAuNi0yLjIsMC42SDEzdjIuOGgtMVYxMmgyYzEuOSwwLDIuOCwwLjcsMi44LDIuMkMxNi44LDE1LDE2LjUsMTUuNSwxNiwxNnogTTIyLjIsMTguN2MtMC41LDAuNS0xLjEsMC44LTEuOSwwLjhjLTAuNSwwLTEtMC4xLTEuMy0wLjRjLTAuNC0wLjItMC43LTAuNi0wLjktMWMtMC4yLTAuNC0wLjMtMS0wLjMtMS41YzAtMC45LDAuMi0xLjYsMC43LTIuMWMwLjUtMC41LDEuMS0wLjgsMS45LTAuOGMwLjgsMCwxLjQsMC4zLDEuOSwwLjhjMC41LDAuNSwwLjcsMS4yLDAuNywyLjFDMjIuOCwxNy41LDIyLjYsMTguMiwyMi4yLDE4Ljd6IE0yOS42LDE5LjRoLTEuMWwtMS0zLjJjLTAuMS0wLjItMC4xLTAuNS0wLjMtMWMtMC4xLDAuNC0wLjIsMC44LTAuMywxbC0xLDMuMmgtMS4xbC0xLjUtNS42aDEuMWwwLDAuMWMwLjMsMS40LDAuNiwyLjQsMC44LDMuMWMwLjEsMC40LDAuMiwwLjgsMC4yLDFjMC0wLjEsMC4xLTAuMiwwLjEtMC4zYzAuMS0wLjMsMC4yLTAuNSwwLjItMC43bDEtMy4yaDFsMSwzLjJjMC4xLDAuNCwwLjIsMC43LDAuMywxYzAsMCwwLTAuMSwwLTAuMWMwLjEtMC4yLDAuNC0xLjYsMS00bDAtMC4xaDEuMUwyOS42LDE5LjR6IE0zNi40LDE2LjloLTMuN2MwLDAuNiwwLjIsMSwwLjUsMS4zYzAuMywwLjMsMC43LDAuNSwxLjIsMC41YzAuNiwwLDEuMS0wLjEsMS43LTAuNGwwLjEtMC4xdjFsLTAuMSwwYy0wLjMsMC4xLTAuNiwwLjItMC44LDAuM2MtMC4zLDAuMS0wLjYsMC4xLTEsMC4xYy0wLjgsMC0xLjUtMC4zLTItMC44Yy0wLjUtMC41LTAuNy0xLjItMC43LTIuMWMwLTAuOSwwLjItMS42LDAuNy0yLjFjMC40LTAuNSwxLjEtMC44LDEuOC0wLjhjMC43LDAsMS4zLDAuMiwxLjcsMC43YzAuNCwwLjUsMC42LDEuMSwwLjYsMS44VjE2Ljl6IE00MC44LDE0LjdsLTAuMSwwYy0wLjIsMC0wLjQtMC4xLTAuNi0wLjFjLTAuNCwwLTAuOCwwLjItMSwwLjVjLTAuMywwLjMtMC40LDAuOC0wLjQsMS4zdjNoLTF2LTUuNmgwLjlsMC4xLDAuOGMwLjItMC4zLDAuNC0wLjUsMC42LTAuNmMwLjMtMC4yLDAuNi0wLjMsMS0wLjNjMC4yLDAsMC41LDAsMC43LDAuMWwwLjEsMEw0MC44LDE0Ljd6IE00Ni4yLDE2LjloLTMuN2MwLDAuNiwwLjIsMSwwLjUsMS4zYzAuMywwLjMsMC43LDAuNSwxLjIsMC41YzAuNiwwLDEuMS0wLjEsMS43LTAuNGwwLjEtMC4xdjFsLTAuMSwwYy0wLjMsMC4xLTAuNiwwLjItMC44LDAuM2MtMC4zLDAuMS0wLjYsMC4xLTEsMC4xYy0wLjgsMC0xLjUtMC4zLTItMC44Yy0wLjUtMC41LTAuNy0xLjItMC43LTIuMWMwLTAuOSwwLjItMS42LDAuNy0yLjFjMC40LTAuNSwxLjEtMC44LDEuOC0wLjhjMC43LDAsMS4zLDAuMiwxLjcsMC43YzAuNCwwLjUsMC42LDEuMSwwLjYsMS44VjE2Ljl6IE01Mi4xLDE5LjRoLTAuOWwtMC4xLTAuNmMtMC40LDAuNS0xLDAuNy0xLjcsMC43Yy0wLjcsMC0xLjMtMC4zLTEuNy0wLjhjLTAuNC0wLjUtMC42LTEuMi0wLjYtMi4xYzAtMC45LDAuMi0xLjYsMC42LTIuMWMwLjQtMC41LDEtMC44LDEuNy0wLjhjMC43LDAsMS4yLDAuMiwxLjYsMC43bDAtMC4xbDAtMC40bDAtMi4zaDFWMTkuNHogTTYwLjYsMTguN2MtMC40LDAuNS0xLDAuOC0xLjcsMC44Yy0wLjQsMC0wLjctMC4xLTEtMC4yYy0wLjMtMC4xLTAuNS0wLjMtMC43LTAuNUw1NywxOS40aC0wLjh2LTcuOWgxdjJjMCwwLjMsMCwwLjYsMCwwLjljMC40LTAuNCwwLjktMC43LDEuNi0wLjdjMC43LDAsMS4zLDAuMywxLjcsMC44YzAuNCwwLjUsMC42LDEuMiwwLjYsMi4xQzYxLjIsMTcuNSw2MSwxOC4yLDYwLjYsMTguN3ogTTY0LjUsMjAuMWMtMC4yLDAuNi0wLjUsMS4xLTAuOCwxLjNjLTAuMywwLjMtMC43LDAuNC0xLjIsMC40Yy0wLjMsMC0wLjUsMC0wLjgtMC4xbC0wLjEsMHYtMC45bDAuMSwwYzAuMiwwLDAuNCwwLjEsMC42LDAuMWMwLjUsMCwwLjktMC4zLDEuMS0wLjlsMC4zLTAuN2wtMi4yLTUuNWgxLjFsMS4yLDMuMmMwLjIsMC41LDAuMywwLjksMC40LDEuMmMwLTAuMiwwLjEtMC4zLDAuMi0wLjZjMC4xLTAuNCwwLjYtMS43LDEuMy0zLjhsMC0wLjFoMS4xTDY0LjUsMjAuMXogTTgxLjUsMjFsLTMuMiwwbC0xLTQuNmwtMS4zLDBsLTIsNC42TDcxLDIxbDUuMi0xMS43bDUuMywwYzEuNSwwLDIuNiwwLjIsMy4xLDAuNmMwLjUsMC40LDAuNiwxLDAuMiwxLjlsLTAuOSwyLjFjLTAuMywwLjctMC44LDEuMy0xLjUsMS42Yy0wLjcsMC40LTEuNCwwLjYtMi4yLDAuN0w4MS41LDIxeiBNODcuNiwyMWwwLjQtMC44Yy0wLjMsMC4zLTAuNywwLjYtMS4yLDAuN2MtMC40LDAuMi0xLjEsMC4yLTIuMSwwLjJjLTEuMiwwLTEuOS0wLjItMi4xLTAuNWMtMC4yLTAuNC0wLjEtMS4xLDAuNC0yLjNjMC41LTEsMS0xLjgsMS42LTIuMmMwLjYtMC40LDEuNC0wLjYsMi40LTAuNmwzLDBsMC4zLTAuNmMwLjItMC41LDAuMy0wLjksMC4xLTEuMWMtMC4yLTAuMi0wLjctMC4zLTEuNC0wLjNjLTAuNywwLTEuOCwwLjEtMy4yLDAuMmwwLjctMS43YzEuMS0wLjEsMi4yLTAuMiwzLjQtMC4yYzEuNiwwLDIuNiwwLjIsMy4xLDAuNmMwLjUsMC40LDAuNCwxLjItMC4xLDIuM2wtMi43LDZMODcuNiwyMXogTTk5LDIxbC03LjksMGwwLjYtMS40bDYuOS01LjZsLTQuMiwwbDAuOC0xLjdsNy42LDBsLTAuNiwxLjRsLTYuOSw1LjZsNC41LDBMOTksMjF6IE0xMDgsMjAuNGMtMC40LDAuMi0wLjgsMC40LTEuMywwLjVjLTAuNSwwLjEtMC45LDAuMi0xLjMsMC4yYy0wLjQsMC0wLjgsMC0xLjMsMGMtMC41LDAtMC45LDAtMS4zLDBjLTAuMywwLTAuNy0wLjEtMS4xLTAuMmMtMC40LTAuMS0wLjYtMC4zLTAuOC0wLjVjLTAuMi0wLjItMC4yLTAuNS0wLjItMC45YzAtMC40LDAuMS0wLjksMC40LTEuNWwxLjEtMi42YzAuMy0wLjYsMC42LTEuMSwxLTEuNWMwLjQtMC40LDAuOC0wLjgsMS4xLTFjMC40LTAuMiwwLjgtMC40LDEuMy0wLjVjMC41LTAuMSwwLjktMC4yLDEuMy0wLjJjMC40LDAsMC44LDAsMS4zLDBjMC41LDAsMC45LDAsMS4yLDBjMC4zLDAsMC43LDAuMSwxLjEsMC4yYzAuNCwwLjEsMC42LDAuMywwLjgsMC41YzAuMiwwLjIsMC4zLDAuNiwwLjIsMWMwLDAuNC0wLjEsMC45LTAuNCwxLjVMMTEwLDE4Yy0wLjMsMC42LTAuNiwxLTAuOSwxLjVDMTA4LjcsMTkuOSwxMDguMywyMC4yLDEwOCwyMC40eiBNMTA5LjgsMjFsMy45LTguN2wyLjUsMGwtMC43LDEuNWMwLjItMC40LDAuNi0wLjgsMS4zLTEuMmMwLjYtMC40LDEuMi0wLjUsMS44LTAuNWwwLjksMGwtMSwyLjJsLTAuOSwwYy0wLjcsMC0xLjMsMC4xLTEuOCwwLjNjLTAuNSwwLjItMC44LDAuNi0xLjEsMS4xbC0yLjMsNS4yTDEwOS44LDIxeiBNMTI0LjYsMjAuNWMtMC44LDAuNC0xLjgsMC43LTMuMSwwLjdjLTAuOCwwLTEuNC0wLjEtMS43LTAuMmMtMC4zLTAuMS0wLjUtMC40LTAuNC0wLjlsLTIuMSw0LjZsLTIuNiwwbDUuNi0xMi41bDIuNSwwbC0wLjQsMC45YzAuMy0wLjQsMC44LTAuNywxLjMtMC44YzAuNS0wLjIsMS4yLTAuMiwyLjEtMC4yYzAuNywwLDEuMywwLjEsMS43LDAuMmMwLjQsMC4xLDAuNywwLjMsMC44LDAuNmMwLjEsMC4zLDAuMSwwLjYsMC4xLDAuOWMtMC4xLDAuMy0wLjIsMC44LTAuNSwxLjNsLTEuMywyLjlDMTI2LDE5LjIsMTI1LjMsMjAuMSwxMjQuNiwyMC41eiBNMTMxLjgsMjFsMC40LTAuOGMtMC4zLDAuMy0wLjcsMC42LTEuMiwwLjdjLTAuNCwwLjItMS4xLDAuMi0yLjEsMC4yYy0xLjIsMC0xLjktMC4yLTIuMS0wLjVjLTAuMi0wLjQtMC4xLTEuMSwwLjQtMi4zYzAuNS0xLDEtMS44LDEuNi0yLjJjMC42LTAuNCwxLjQtMC42LDIuNC0wLjZsMywwbDAuMy0wLjZjMC4yLTAuNSwwLjMtMC45LDAuMS0xLjFjLTAuMi0wLjItMC43LTAuMy0xLjQtMC4zYy0wLjcsMC0xLjgsMC4xLTMuMiwwLjJsMC43LTEuN2MxLjEtMC4xLDIuMi0wLjIsMy40LTAuMmMxLjYsMCwyLjYsMC4yLDMuMSwwLjZjMC41LDAuNCwwLjQsMS4yLTAuMSwyLjNsLTIuNyw2TDEzMS44LDIxeiBNMTM3LjcsMjQuOGwtMi43LDBsMy4zLTMuOGwwLjQtOC43bDIuOSwwbC0wLjgsNi4ybDQuNS02LjJsMi43LDBMMTM3LjcsMjQuOHoiLz48cGF0aCBjbGFzcz0ic3QwIiBkPSJNMTMwLjUsMTcuM2MtMC4yLDAuMS0wLjQsMC41LTAuNywxLjFjLTAuMywwLjYtMC4zLDAuOS0wLjIsMWMwLjEsMC4xLDAuNSwwLjIsMS4xLDAuMmMwLjMsMCwwLjUsMCwwLjcsMGMwLjEsMCwwLjMsMCwwLjUsMGMwLjIsMCwwLjMtMC4xLDAuNC0wLjFjMC4xLTAuMSwwLjItMC4xLDAuMy0wLjJjMC4xLTAuMSwwLjItMC4yLDAuMi0wLjRsMC44LTEuN2wtMS44LDBDMTMxLjEsMTcuMSwxMzAuNywxNy4xLDEzMC41LDE3LjN6Ii8+PHBhdGggY2xhc3M9InN0MCIgZD0iTTEyMy45LDEzLjdjLTAuNywwLTEuMywwLjEtMS42LDAuM2MtMC4zLDAuMi0wLjYsMC41LTAuOCwxbC0xLjQsMy4yYy0wLjIsMC41LTAuMywwLjktMC4xLDFjMC4xLDAuMiwwLjYsMC4zLDEuNCwwLjNjMC44LDAsMS4zLTAuMSwxLjYtMC4zYzAuMy0wLjIsMC42LTAuNSwwLjgtMWwxLjQtMy4yYzAuMy0wLjYsMC4zLTAuOSwwLjItMS4xQzEyNS4zLDEzLjgsMTI0LjgsMTMuNywxMjMuOSwxMy43eiIvPjwvZz48L3N2Zz4=
安全提示信息 应用程序记录日志信息,不得记录敏感信息
应用程序记录日志信息,不得记录敏感信息 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05d-Testing-Data-Storage.md#logs Files: A/h.java, line(s) 106 A0/C0065a.java, line(s) 295,348,376 Ad/c.java, line(s) 33 Am/AbstractC0366x.java, line(s) 213,222,227,236,245,214,223,228,237,246 Am/AbstractC1888x.java, line(s) 218,227,232,241,250,219,228,233,242,251 B0/C0293x.java, line(s) 122 B4/C1323a.java, line(s) 474 B4/C2327a.java, line(s) 498 B5/j.java, line(s) 275 Be/AbstractC2415b.java, line(s) 803,830,802,829,3073 Be/c.java, line(s) 111 Be/e.java, line(s) 102,179,308,107,266,101,178 Be/f.java, line(s) 19 Bf/a.java, line(s) 128,159,168,149,151,171,177,180,127,158 Bf/c.java, line(s) 260,485,434,259,481 Bg/C0405b.java, line(s) 245,105,106 Bg/C2422b.java, line(s) 364,213,214 Bg/r.java, line(s) 9 Bh/AbstractC0541I.java, line(s) 93 Bh/AbstractC2440I.java, line(s) 97 Bk/C0040h.java, line(s) 376,223 Bk/C0360h.java, line(s) 394,241 Bk/t0.java, line(s) 234,233 Bk/u0.java, line(s) 35,36,41 Bn/AbstractC2535m.java, line(s) 214 C2/AbstractC2604f.java, line(s) 21 C2/AbstractC2606h.java, line(s) 136 Cd/i.java, line(s) 48,73,55,61 Cd/l.java, line(s) 39,72 Cf/e.java, line(s) 85 Cf/k.java, line(s) 47 Ck/c.java, line(s) 35 Ck/d.java, line(s) 21,23,26 D/M.java, line(s) 91,110,382,539 D/T.java, line(s) 198 D0/B0.java, line(s) 357 D0/C0319v.java, line(s) 114 D0/C0488v.java, line(s) 218 D0/U.java, line(s) 228,229 D1/A.java, line(s) 262 D4/f.java, line(s) 73,76 D8/j.java, line(s) 257 D8/k.java, line(s) 537 Da/d.java, line(s) 186 Dj/h.java, line(s) 340,714 Dj/j.java, line(s) 67 Dj/q.java, line(s) 100,104,108 Dj/r.java, line(s) 1291,1300,1020,1290,1275,1283,1297 Dk/AbstractC0781g.java, line(s) 172 Dk/AbstractC3106g.java, line(s) 287 Dl/l.java, line(s) 396,410,420 E3/AbstractC1778b.java, line(s) 170,176,182,204,230,236 E3/AbstractC3270b.java, line(s) 170,176,182,204,230,236 Ea/c.java, line(s) 183,210,180,209 Ed/c.java, line(s) 24,25 Ed/u.java, line(s) 23,32,31,37,38 F2/AbstractC1849g.java, line(s) 27 F2/AbstractC3376g.java, line(s) 47 F2/C1848f.java, line(s) 42,47 F2/C1851i.java, line(s) 39 F2/C1852j.java, line(s) 58,228 F2/C3375f.java, line(s) 43,48 F2/C3377h.java, line(s) 59 F2/C3378i.java, line(s) 47 F2/C3379j.java, line(s) 58,228 F9/d.java, line(s) 46 Fj/d.java, line(s) 32,42,47,36,40 Fm/C0636a.java, line(s) 109,110 Fm/C3494a.java, line(s) 832,1269,170,831,865,904,949,1011,1067,1153,1259,1372,1474,1589,171,611,635,656,694,726,740,748,756,821,825,827,959,1162,1264 G4/C1948G.java, line(s) 1140 G4/C1954c.java, line(s) 95,114 G4/C1967p.java, line(s) 53 G4/C1968q.java, line(s) 153,267 G4/C3520G.java, line(s) 670,856,1700,1779 G4/C3526c.java, line(s) 96,115 G4/C3539p.java, line(s) 53 G4/C3540q.java, line(s) 156,270 G4/j.java, line(s) 1325 Gf/C0108w.java, line(s) 26 Gf/C0705w.java, line(s) 28 Gf/N.java, line(s) 49,58,48 Gf/Q.java, line(s) 50,62,78,68 Gf/S.java, line(s) 35,56,61,92,95 Gg/BinderC3682a.java, line(s) 237,309,372 Gg/C0657a.java, line(s) 233,305,367 Gg/b.java, line(s) 240,251,244,246 Gh/C0810d.java, line(s) 17,29,41,53 Gh/C3686d.java, line(s) 19,31,43,55 Gi/AbstractC0240g2.java, line(s) 20 Gi/AbstractC0810g2.java, line(s) 22 H/h.java, line(s) 348,354,349,355 H4/h.java, line(s) 39 H4/i.java, line(s) 57,62,71,77,83,93,100 H4/s.java, line(s) 245,247,269,271,301,303,311,313 Hf/t.java, line(s) 481,492,493,379,477 Hg/C0711b.java, line(s) 177 Hg/C3875b.java, line(s) 186 If/c.java, line(s) 26 Ij/A.java, line(s) 44,45 Ij/l.java, line(s) 98 Ij/x.java, line(s) 55,40 Jb/AbstractC0118c.java, line(s) 26 Jb/AbstractC4369c.java, line(s) 26 Jf/b.java, line(s) 40 Jf/d.java, line(s) 53,60 Jf/e.java, line(s) 51,53,68 Ka/b.java, line(s) 109,134,108,133 Kb/C0124a.java, line(s) 409,1166 Kb/C4585a.java, line(s) 470,1294 Kf/b.java, line(s) 224,248,95,146,223,247,55,60,208,251 Kg/C0790c.java, line(s) 142 Kg/C4598c.java, line(s) 157 La/B.java, line(s) 46,93,45,83,92,84 La/h.java, line(s) 415,139,176,414,287 La/i.java, line(s) 147,148 La/k.java, line(s) 15,57 Ld/b.java, line(s) 337,341,345,358,362,366,332,375,1051,1064,1071 Le/G.java, line(s) 130 Le/r.java, line(s) 105,104,117,118 M0/C0.java, line(s) 175 M2/b.java, line(s) 128 M2/g.java, line(s) 224,346,354,371,453,500,695,742,821,975,980,986,1003,1013,1024,1031,1127,1250,1410,1486,1563,1613,1633,1647,1681,1703,1770,1815,1818,1859,103,684,704,712,945,949,953,1061,1070,1369,1374,1538 M3/y.java, line(s) 146,470,161,165,171,174 M8/i.java, line(s) 49,48 Ma/f.java, line(s) 54,117,55,118 Ma/g.java, line(s) 58,95,195,210,57,91,107,113,140,146,153,178,190,197,209,52,111,144,161,179 N/i.java, line(s) 181,235 N/q.java, line(s) 110 N2/d.java, line(s) 674,688,675,689,543 Na/c.java, line(s) 112,183,189,259,269,184,260,113,190,272 Ne/C0817C.java, line(s) 30,32 Ne/C0818D.java, line(s) 24,26 Ne/C4981D.java, line(s) 31,33 Ne/F.java, line(s) 39,44 Ne/G.java, line(s) 38,42 Ne/H.java, line(s) 27,29,35,37,45,47 Ne/v.java, line(s) 49 Ne/y.java, line(s) 54 O2/c.java, line(s) 25,24 O2/f.java, line(s) 30,33 O4/g.java, line(s) 365,368,903,906,907 Oa/d.java, line(s) 11,10 Oe/C0857E.java, line(s) 32,48,59,68,77 Oe/C0861I.java, line(s) 45,81 Oe/C0872k.java, line(s) 38 Oe/C5200E.java, line(s) 35,51,62,71,80 Oe/C5204I.java, line(s) 53,90 Oe/C5215k.java, line(s) 40 Oe/l.java, line(s) 33 Oe/n.java, line(s) 30 Oe/p.java, line(s) 82 Oe/x.java, line(s) 27 Oh/g.java, line(s) 108,109 P1/C2988D.java, line(s) 513 P1/C5286D.java, line(s) 1366 Pa/C0508c.java, line(s) 42,41 Pa/C0509d.java, line(s) 55,54 Pa/C1170b.java, line(s) 94,114,119,127,141,95,115,122,130,144 Pa/C1171c.java, line(s) 43,42 Pa/C1172d.java, line(s) 56,55 Pc/C0144c.java, line(s) 74 Pe/a.java, line(s) 219 Q0/f.java, line(s) 21 Qe/C0905c.java, line(s) 33 Qe/C0908f.java, line(s) 64 Qe/C5581c.java, line(s) 35 Qe/C5584f.java, line(s) 74 R/d.java, line(s) 93 R1/c.java, line(s) 249 R4/AbstractC5764c.java, line(s) 760,769 R4/e.java, line(s) 180,418,154,192,179,203,413,417,204 Ra/b.java, line(s) 72,73 Rb/B0.java, line(s) 215,747,221,293 Rb/K0.java, line(s) 828,860,886,891 Rb/s0.java, line(s) 72,116 Rb/y0.java, line(s) 30 Rb/z0.java, line(s) 51 Rc/C0155b.java, line(s) 268,269 Rc/C5868b.java, line(s) 297,298 Rh/C1071N.java, line(s) 320 Rh/C5890N.java, line(s) 353 Rl/I.java, line(s) 3027 Sa/B.java, line(s) 84,42,51,58,81,43,52,59,60,61,64 Sa/C0600c.java, line(s) 75,76 Sa/C1348b.java, line(s) 55,54,64,94,95 Sa/C1349c.java, line(s) 78,79 Sa/i.java, line(s) 21,26,22,29 Sa/l.java, line(s) 23,30,124,134,148,158,181,191,215,222,229,233,236,239,22,29,123,133,145,157,180,190,210,221,228,232,235,238 Sa/s.java, line(s) 47,50,48,51 Sc/d.java, line(s) 98,97 Sf/C0985c.java, line(s) 175,364 Sf/C6018c.java, line(s) 189,403 Si/d.java, line(s) 32 T2/a.java, line(s) 30 Td/k.java, line(s) 1233,281,1055,1056,1232,282,1043,1113,1123,1196 Te/C1008a.java, line(s) 37,38 Te/C1009b.java, line(s) 50,49 Te/C1010c.java, line(s) 84,79,120,126 Te/C6179a.java, line(s) 40,41 Te/C6180b.java, line(s) 51,50 Te/C6181c.java, line(s) 84,79,120,126 Tf/C6183b.java, line(s) 65,76 Ud/C1023d.java, line(s) 90,124 Ud/C6252d.java, line(s) 105,139 V3/r.java, line(s) 69,71,140 Vj/d.java, line(s) 15 W/C3770u.java, line(s) 207 W/C6431s.java, line(s) 854 W/C6433u.java, line(s) 210 W/n0.java, line(s) 91 W2/q.java, line(s) 19,18 W4/f.java, line(s) 23 Wa/a.java, line(s) 47,110,127,133,138,55,111,128,134,139 We/g.java, line(s) 47,118 We/h.java, line(s) 30,37 We/l.java, line(s) 89,249,270,288,379,328,352,88,110,248,269,287,318,323,354,368,378,111,319,324,369,284,294,315,357 We/o.java, line(s) 83,104,89,109,111,113,68,82,103,69,77 We/q.java, line(s) 35,24,28,34 We/r.java, line(s) 79,78 We/u.java, line(s) 28,36,43,27,35,42 We/w.java, line(s) 38,39 Wj/C1161a.java, line(s) 20 Wj/C6513a.java, line(s) 22 Xd/g.java, line(s) 115 Y4/C3957c.java, line(s) 27 Y4/C6684c.java, line(s) 27 Ya/r.java, line(s) 44,45 Ye/g.java, line(s) 19 Ye/v0.java, line(s) 1022,55,1047,153,310,317 Yi/C1207P.java, line(s) 21,32 Yi/C6829P.java, line(s) 24,35 Yk/a.java, line(s) 204,203 Yn/d.java, line(s) 30 Yo/g.java, line(s) 69 Yo/i.java, line(s) 146,401,409,429,450,400,404,417,405,418 Zd/AbstractC1162i.java, line(s) 197,201 Zd/AbstractC7004i.java, line(s) 227,231 Zd/RunnableC6999d.java, line(s) 61 Zi/k.java, line(s) 42,61 Zi/l.java, line(s) 84 a3/b.java, line(s) 92,97,104,108,123,131 af/e.java, line(s) 455 aj/f.java, line(s) 573 b/a.java, line(s) 138,142 b2/AbstractC1290k.java, line(s) 30 b2/AbstractC2294k.java, line(s) 30 b2/C1288i.java, line(s) 49 b2/C2292i.java, line(s) 49 bb/j.java, line(s) 289,24,219 bd/e.java, line(s) 76,99,75,98 cb/f.java, line(s) 36,37 ce/c.java, line(s) 133,134 ce/d.java, line(s) 59,58 cj/a.java, line(s) 249 com/atlys/android/AtlysApplication.java, line(s) 227,86,104 com/cardreader/card_reader_lib/CardTask.java, line(s) 53,55,116,118,120,128,132,167,190,193,196,349,378,68,171 com/cashfree/pg/core/api/utils/CFUtil.java, line(s) 125 com/cashfree/pg/core/hidden/nfc/NfcCardReader.java, line(s) 35,52 com/cashfree/pg/core/hidden/nfc/parser/EmvParser.java, line(s) 213 com/cashfree/pg/core/hidden/nfc/utils/EnumUtils.java, line(s) 22 com/cashfree/pg/core/hidden/payment/handler/GooglePlayIntegrityHandler.java, line(s) 105 com/cashfree/pg/network/h.java, line(s) 55 com/cashfree/pg/ui/hidden/checkout/e.java, line(s) 69 com/freshchat/consumer/sdk/Freshchat.java, line(s) 163 com/freshchat/consumer/sdk/activity/ConversationDetailActivity.java, line(s) 1051,2229 com/freshchat/consumer/sdk/activity/m.java, line(s) 178,185,187 com/freshchat/consumer/sdk/b/a/a.java, line(s) 43,59 com/freshchat/consumer/sdk/c/b.java, line(s) 29,31,64 com/freshchat/consumer/sdk/i/b.java, line(s) 64,199,327 com/freshchat/consumer/sdk/service/a/g.java, line(s) 24 com/freshchat/consumer/sdk/service/b/b.java, line(s) 18 com/freshchat/consumer/sdk/ui/af.java, line(s) 33 com/freshchat/consumer/sdk/ui/b.java, line(s) 192 com/freshchat/consumer/sdk/util/ad.java, line(s) 85,96,108,120,132,150,166 com/freshchat/consumer/sdk/util/ae.java, line(s) 140,156,174,193,232 com/freshchat/consumer/sdk/util/au.java, line(s) 16 com/freshchat/consumer/sdk/util/cc.java, line(s) 232 com/freshchat/consumer/sdk/util/cf.java, line(s) 460,834,874,895,908,925 com/freshchat/consumer/sdk/util/cj.java, line(s) 123 com/freshchat/consumer/sdk/util/co.java, line(s) 25,38,81,104,42,99,87,108 com/freshchat/consumer/sdk/util/k.java, line(s) 89 com/github/penfeizhou/animation/decode/b.java, line(s) 43 com/github/penfeizhou/animation/decode/f.java, line(s) 90,116,309,332,178,181,191,305,328 com/github/penfeizhou/animation/io/a.java, line(s) 125,169,299,167,305,308,298 com/horcrux/svg/C0517c.java, line(s) 10 com/horcrux/svg/C0526l.java, line(s) 17 com/horcrux/svg/C2914c.java, line(s) 11 com/horcrux/svg/RenderableView.java, line(s) 213,239 com/horcrux/svg/VirtualView.java, line(s) 262,518,522,540 com/horcrux/svg/k0.java, line(s) 20,47,66 com/plaid/internal/b3.java, line(s) 166,189 com/rajat/pdfviewer/PdfViewerActivity.java, line(s) 324 com/razorpay/B$$W$.java, line(s) 301 com/razorpay/BaseUtils.java, line(s) 867 com/razorpay/CheckoutUtils.java, line(s) 51 com/razorpay/OpinionatedSoln.java, line(s) 317 com/razorpay/OtpElfData.java, line(s) 35 com/razorpay/SmsReceiver.java, line(s) 37,33 com/razorpay/d__1_.java, line(s) 7 com/razorpay/n$$t$.java, line(s) 123 com/razorpay/o$_b$.java, line(s) 89 com/rnmaps/maps/A.java, line(s) 47,58 com/rnmaps/maps/AsyncTaskC0694a.java, line(s) 50 com/rnmaps/maps/AsyncTaskC2939a.java, line(s) 54 com/rnmaps/maps/C0704k.java, line(s) 136 com/rnmaps/maps/C2949k.java, line(s) 148 com/shopify/reactnative/skia/PlatformContext.java, line(s) 136,142 com/shopify/reactnative/skia/RNSkiaModule.java, line(s) 41,47 com/shopify/reactnative/skia/SkiaBaseView.java, line(s) 28,57,69,76,82,90 com/swmansion/gesturehandler/react/RNGestureHandlerModule.java, line(s) 182 com/swmansion/reanimated/NativeMethodsHelper.java, line(s) 92 com/swmansion/reanimated/ReanimatedUIManagerFactory.java, line(s) 20 com/swmansion/reanimated/keyboard/WindowsInsetsManager.java, line(s) 53,62,95,110 com/swmansion/reanimated/layoutReanimation/AnimationsManager.java, line(s) 402,416 com/swmansion/reanimated/layoutReanimation/ReanimatedNativeHierarchyManager.java, line(s) 41 com/swmansion/reanimated/layoutReanimation/SharedTransitionManager.java, line(s) 452 com/swmansion/reanimated/layoutReanimation/TabNavigatorObserver.java, line(s) 37,105 com/swmansion/reanimated/sensor/ReanimatedSensorContainer.java, line(s) 32 com/swmansion/rnscreens/ScreensModule.java, line(s) 50,61,53 com/zmxv/RNSound/RNSoundModule.java, line(s) 61,72,83,92,103,251,268,67,98 com/zmxv/RNSound/a.java, line(s) 28 com/zmxv/RNSound/b.java, line(s) 29 df/a.java, line(s) 48 di/AbstractC0772a.java, line(s) 179,181 di/AbstractC3097a.java, line(s) 335,337 e/j.java, line(s) 165,273,266,805 e2/AbstractC3261b.java, line(s) 76,93,255,264 eb/AbstractC0087b.java, line(s) 25 eb/AbstractC3317b.java, line(s) 26 fa/a.java, line(s) 49,62,48,61 fa/b.java, line(s) 48,49 fb/C0100j.java, line(s) 33 fb/C3466j.java, line(s) 50,39,65,84,49 g2/c.java, line(s) 29,32,35,71,73,75,115,121 gj/C0852a.java, line(s) 40 gj/s.java, line(s) 39 gj/u.java, line(s) 83 i2/a.java, line(s) 1064,1094,1128 ia/a.java, line(s) 88,87 in/juspay/hypersdk/analytics/g.java, line(s) 46 j4/d.java, line(s) 60,120,155 j4/i.java, line(s) 66,76,104 j4/j.java, line(s) 77,77,89,168,109,124,150 k/AbstractC2412p.java, line(s) 44,71 k/AbstractC4445p.java, line(s) 44,71 k/LayoutInflaterFactory2C4423C.java, line(s) 1334,1719,1721,1723,1183,1192,1202,1211,1229,1238,732,826,829,1580 k/z.java, line(s) 62,79,109 l9/c.java, line(s) 140,128,156 lb/C0127a.java, line(s) 28,34 lb/C4701a.java, line(s) 30,36 ml/a.java, line(s) 577,885,1703 o0/InputConnectionC2850B.java, line(s) 290 o0/InputConnectionC5073B.java, line(s) 291 p/a.java, line(s) 83 p003do/AbstractC3174c.java, line(s) 590,604,615 pp/h.java, line(s) 692 rd/AbstractC0955c.java, line(s) 432 rd/AbstractC5871c.java, line(s) 494 sd/a.java, line(s) 49,107 sd/b.java, line(s) 46 sd/c.java, line(s) 403,404 se/a.java, line(s) 50,49,54 uf/c.java, line(s) 236,241,90,91,227,229 v4/C3696a.java, line(s) 166 v4/C6333a.java, line(s) 166 vd/a.java, line(s) 27 ve/b.java, line(s) 10,9 w3/i.java, line(s) 139,145,151,157 x5/AbstractC3899b.java, line(s) 16,26 x5/AbstractC6585b.java, line(s) 16,26 xe/d.java, line(s) 32,60 xe/g.java, line(s) 142,169,80,141,168,58,71,102,148,198,235,270 xe/l.java, line(s) 52,62 xk/AbstractC1171a.java, line(s) 99,119,153,165,172,175 xk/AbstractC6628a.java, line(s) 103,123,157,169,176,179 yf/e.java, line(s) 20,23 yf/g.java, line(s) 59,58 yf/h.java, line(s) 30,29 yf/i.java, line(s) 47,64,46,63,40,61 yf/o.java, line(s) 724,734,623,711,714,723,733 yf/p.java, line(s) 29,45 yf/q.java, line(s) 45,39,79,42,53,56,59 yf/v.java, line(s) 22,35,21,21,34,34 yf/w.java, line(s) 49,98,48,111,124,141,148 yf/y.java, line(s) 23,22 yl/e.java, line(s) 184,237,235,283 z2/C6954c.java, line(s) 34
安全提示信息 此应用侦听剪贴板更改。一些恶意软件也会监听剪贴板更改
此应用侦听剪贴板更改。一些恶意软件也会监听剪贴板更改 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04b-Mobile-App-Security-Testing.md#clipboard Files: Xg/a.java, line(s) 8,3 com/reactnativecommunity/clipboard/ClipboardModule.java, line(s) 30,5
安全提示信息 此应用程序将数据复制到剪贴板。敏感数据不应复制到剪贴板,因为其他应用程序可以访问它
此应用程序将数据复制到剪贴板。敏感数据不应复制到剪贴板,因为其他应用程序可以访问它 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x04b-Mobile-App-Security-Testing.md#clipboard Files: P1/C5308g.java, line(s) 5,21,124 com/freshchat/consumer/sdk/activity/al.java, line(s) 4,31 com/reactnativecommunity/clipboard/ClipboardModule.java, line(s) 5,252 in/juspay/hypersdk/core/JBridge.java, line(s) 7,407
安全提示信息 应用程序可以写入应用程序目录。敏感信息应加密
应用程序可以写入应用程序目录。敏感信息应加密 Files: Pg/i.java, line(s) 28 com/plaid/internal/ac.java, line(s) 22,24
安全提示信息 应用与Firebase数据库通信
该应用与位于 https://vdcapp-54939.firebaseio.com 的 Firebase 数据库进行通信
已通过安全项 此应用程序可能具有Root检测功能
此应用程序可能具有Root检测功能 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05j-Testing-Resiliency-Against-Reverse-Engineering.md#testing-root-detection-mstg-resilience-1 Files: Ed/c.java, line(s) 41 Pb/C0141c.java, line(s) 34,27,28,28,28,28,28,28 Pb/C5432c.java, line(s) 38,31,32,32,32,32,32,32 We/g.java, line(s) 105,105,106 bd/g.java, line(s) 50 in/juspay/hypersdk/data/SessionInfo.java, line(s) 122,126
已通过安全项 此应用程序使用SSL Pinning 来检测或防止安全通信通道中的MITM攻击
此应用程序使用SSL Pinning 来检测或防止安全通信通道中的MITM攻击 https://github.com/OWASP/owasp-mstg/blob/master/Document/0x05g-Testing-Network-Communication.md#testing-custom-certificate-stores-and-certificate-pinning-mstg-network-4 Files: Xn/e.java, line(s) 67,66,65 Xn/h.java, line(s) 79,69,78,86,77,77 Xn/n.java, line(s) 104,92,103,102,102 com/cashfree/pg/network/c.java, line(s) 113,112,110,110 in/juspay/hypersdk/security/HyperSSLSocketFactory.java, line(s) 63,62,64,61,61
已通过安全项 Firebase远程配置已禁用
Firebase远程配置URL ( https://firebaseremoteconfig.googleapis.com/v1/projects/729591679858/namespaces/firebase:fetch?key=AIzaSyCaJg7EiVBaCCz4Obk3aSjsrnUd-AAufgU ) 已禁用。响应内容如下所示: 响应码是 403
综合安全基线评分总结
Atlys v4.8.7
Android APK
45
综合安全评分
中风险