Lawrence Gimenez Profile Photo

Lawrence Gimenez

Husband, Father, Programmer

    2020 Was a Mixed Year

    Mixed year because as good as the metrics are compared to last year, it saddens me that a huge number of people are laid off and companies closed because of Covid-19. Hopefully 2021 will be different. Here's a sneak peek of the OnlineJobs.ph app metrics during lockdown. In terms of number of installations, active devices and overall metrics, OnlineJobs.ph experienced significant gains throughout the year 2020. I rewrote the app, from React Native to Swift, back in January 2020 and released the new version a month after.

    Read More

    Mobile App Dev 101: Technical Error Prompts are a no-no

    Technical error prompts are a no-no. But not that important to submit a quick fix to your pipeline. But nonetheless, the reason is that for everyday users it feels like something is deeply broken with your app or worse, they feel like they are the ones who broke or crash it. More importantly they won't understand anything. URLSessionTask is a class for performing URL operations. In case you want to Google it.

    Read More

    Books I’ve Read This 2020

    As we close off the year 2020, I just want to share the books that I enjoyed reading. Some of this books were released this year and some are old. No Filter: The Inside Story of InstagramRise and Kill First: The Secret History of Israel’s Targeted AssassinationsEl Jefe: The Stalking of Chapo GuzmanShoe Dog: A Memoir by the Creator of NikeReworkThe Hacker and the State: Cyber Attacks and the New Normal of GeopoliticsThis is Not a T-Shirt: A Brand, a Culture, a CommunityPermanent RecordManhunters: How We Took Down Pablo EscobarNo Rules Rules: Netflix and the Culture of ReinventionAt the Devil’s Table: The Untold Story of the Insider Who Brought Down the Cali CartelTiradores: Missions and the Men of the Philippine’s Light Reaction RegimentMidnight at ChernobylSamsung Rising

    Go Manila Bug

    I found a simple vulnerability of GoManila, the app from Manila's Office of the Mayor. The app is using Firebase for the backend and the developer forgot to set the privacy settings thus anyone can visit the link and view its data on https://gomanila.firebaseio.com/.json I reported it to the Office of the Mayor and settings was updated already.

    Globe Telecom Rewards Bug

    I discovered that the Globe rewards app is communicating over insecure HTTP and because of this, it suffers from data leak. Using Wireshark I was able to read in clear plain text my phone number that I entered. I was able to contact Globe Telecom regarding this bug and was rewarded with 2,000 pesos. Lol.

    Mass Delete Firebase Authenticated Users

    sudo pip install firebase-admin import firebase_admin from firebase_admin import credentials from firebase_admin import authcred = credentials.Certificate("/Users/lawrence/Projects//.json") app = firebase_admin.initialize_app(cred)for user in auth.list_users().iterate_all(): print("User ID = " + user.uid) python firebase_auth_nuke.py auth.delete_user(user.uid) import firebase_admin from firebase_admin import credentials from firebase_admin import authcred = credentials.Certificate("/Users/lawrence/Projects/StarTender/starme-dev-firebase-adminsdk-7l2d7-6456855c7d.json") app = firebase_admin.initialize_app(cred)for user in auth.list_users().iterate_all(): print("User ID = " + user.uid) auth.delete_user(user.uid) print("Deleted user ID " + user.uid)