// CTF CHALLENGE 26

IPC: Provider Hijacking

πŸ“± Vulnerability Detected in AndroidManifest

While reverse engineering the application, you found the following declaration of an internal content provider that was mistakenly exported to the entire operating system:

<provider android:name=".KeysProvider" android:authorities="com.bank.secure.provider" android:exported="true" />

You are inside the adb shell terminal. Write the full command to perform a content query passing the exact path (--uri) pointing to the resource content://com.bank.secure.provider/keys.

root@android:/ #