top | item 43740920

(no title)

wyck | 10 months ago

This isn't obvious, 99% of apps make multiple calls to multiple services, and these SDK's are embedded into the app. How can you tell whats legit outbound/inbound? Doing a fingerprint search for the worst culprits might help catch some, but it would likely be a game of cat and mouse.

discuss

nottorp|10 months ago

> How can you tell whats legit outbound/inbound?

If the app isn't a web browser, none are legit?

wyck|10 months ago

99.9% of app on app store connect to the network for a multitude of reason, do you really think only browsers connect to the internet? Do you not have an app on your phone?