bla5r

@bla5r

Security research. Reverse engineering and Android stuff.

Vrijeme pridruživanja: veljača 2017.
11 fotografija ili videozapisa Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @bla5r

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @bla5r

  1. Prikvačeni tweet
    24. tra 2019.

    Check out the first article of a blog series about Android application diffing I wrote with . Use cases coming soon.

    "Android Application diffing: Engine Overview" In this blog post and describe the challenges of spotting changes between two versions of the same Android app and how they addressed them
    1 proslijeđeni tweet 3 korisnika označavaju da im se sviđa
    Poništi
  2. proslijedio/la je Tweet
    10. ruj 2019.

    [BLOG+TOOL] QBDI 0.7.0 Add X86, android-X86, android-X86_64 and a use case on Tencent Packer.

    42 proslijeđena tweeta 57 korisnika označava da im se sviđa
    Poništi
  3. 19. kol 2019.

    Whenever accessing Facebook through UC Browser, there’re no requests to any legitimate servers but shady encrypted requests over HTTP. Invisible from UI, even lock icon shows up. Weird af. 🤨

    1 proslijeđeni tweet 4 korisnika označavaju da im se sviđa
    Poništi
  4. proslijedio/la je Tweet
    8. kol 2019.

    WhatsApp Protocol Decryption for Chat Manipulation and More by

    43 proslijeđena tweeta 86 korisnika označava da im se sviđa
    Poništi
  5. proslijedio/la je Tweet
    18. srp 2019.

    🎉 new article: how to debug native android libs with gdb

    Heads up people ! New article alert ☠︎ Android Malware Analysis : Dissecting Hydra Dropper
    10 proslijeđenih tweetova 42 korisnika označavaju da im se sviđa
    Poništi
  6. proslijedio/la je Tweet
    9. srp 2019.

    New open source tool for LTE, GSM and 3G mobile radio monitoring and protocol analysis in Python: QCsuper

    225 proslijeđenih tweetova 385 korisnika označava da im se sviđa
    Poništi
  7. proslijedio/la je Tweet
    3. lip 2019.

    [BLOG] Android Native Library Analysis with QBDI by Dynamic binary instrumentation to reverse engineer an Android JNI library. Yes, our DBI is improving its ARM support :)

    47 proslijeđenih tweetova 80 korisnika označava da im se sviđa
    Poništi
  8. 24. svi 2019.

    Why having a hard time setting up E2E encryption when it can be that simple? I mean WHY?

    2 korisnika označavaju da im se sviđa
    Poništi
  9. 16. svi 2019.

    Finally, here's the third (and last) article of the blog series and I wrote about Android application diffing. Hope you guys enjoyed it!

    [BLOG] Android Application Diffing: Analysis of Modded Version by and Defeating obfuscation and spotting actual mutations in altered applications
    1 reply 6 proslijeđenih tweetova 10 korisnika označava da im se sviđa
    Poništi
  10. 2. svi 2019.

    The second part of the blog series is out. It is about how to investigate a security patch through application diffing.

    [BLOG] Android Application Diffing: CVE-2019-10875 Inspection for Mint Browser by and : Going down the rabbit hole in an APK to the find the patch
    1 reply 5 proslijeđenih tweetova 3 korisnika označavaju da im se sviđa
    Poništi
  11. proslijedio/la je Tweet
    1. svi 2019.

    Did you ever feel like you need to calculate a similarity-preserving hash over some data from a kernel module (for example to check if a newly-executable code region is "similar" to something known)? I wrote some code for this a few weeks ago.

    1 reply 50 proslijeđenih tweetova 144 korisnika označavaju da im se sviđa
    Poništi
  12. proslijedio/la je Tweet
    24. tra 2019.

    As diff based analysis is pretty useful in reverse engineering, here is the first part of a blog post series from : Nice work !

    35 proslijeđenih tweetova 41 korisnik označava da mu se sviđa
    Poništi
  13. proslijedio/la je Tweet
    3. tra 2019.

    Apache Local Root: CVE-2019-0211: Vulnerability description. Exploit will come later.

    11 replies 438 proslijeđenih tweetova 709 korisnika označava da im se sviđa
    Poništi
  14. 28. ožu 2019.

    Obviously I’m talking about pages accessed over both HTTP and HTTPS.

    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  15. 28. ožu 2019.

    However problem gets bigger: an attacker could pretty easily take advantage of those communications to spy on someone’s web browsing or steal secrets.

    1 reply
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  16. 28. ožu 2019.

    It clearly looks like a spying mechanism hidden behind something that developers promote as an anti-phishing feature.

    1 reply
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  17. 28. ožu 2019.

    Found out that a popular ‘privacy-oriented’ Android web browser is a bit too chatty.

    1 reply
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  18. proslijedio/la je Tweet
    27. ožu 2019.

    Here are some research related to Android runtime restrictions: - PDF: - Blog Post: - Github: cc

    89 proslijeđenih tweetova 171 korisnik označava da mu se sviđa
    Poništi
  19. 4. ožu 2019.

    Sounds great.

    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  20. 3. ožu 2019.

    Trying to write a PoC for CVE-2019-1987. Got something kinda interesting so far.

    1 reply
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi

@bla5r još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·