I did notice the same thing. As soon as I saw root access needed, I pretty much took everything else with a grain of salt. It's always game over if the attacker can get their hands on the device.
I am not knowledgeable in this field and I would like to learn more how to do most of these things, what would be a good resource to start off with?
I am not knowledgeable in this field and I would like to learn more how to do most of these things, what would be a good resource to start off with?