I need a seasoned ethical hacker to probe the security of my production-ready Android application. The task covers everything from installing the APK on a range of devices and emulators to hunting for flaws in authentication, data storage, network calls, and component exposure. Please treat the engagement as a comprehensive black-box review: assume no source code, no prior credentials, and simulate a real-world attacker’s mindset while remaining fully within legal and agreed-upon bounds. I expect manual exploitation to complement automated scans so that business-logic weaknesses and misconfigurations do not slip through the cracks. You are free to use tools such as MobSF, Burp Suite, Frida, JADX, or any specialised mobile framework you normally rely on, provided the findings are reproducible. Deliverables should arrive as a concise report that includes: • A clear executive summary highlighting critical, high, medium, and low-risk issues • Technical details for each finding, complete with reproduction steps, screenshots or PoC scripts, and recommended fixes • A re-test memo after patches so I can verify all issues are properly closed If you can start soon and are confident with modern Android security controls (Scoped Storage, Play Integrity API, TLS pinning, etc.), let’s move forward.