Meiklejohnian absolutist. free speech as in free-for-everyone.
mutuals: 
it's so nice just being able to flip a switch and not have to deal with frida or patching an APK to bypass pinning
Show this thread
If you do any kind of reverse engineering or auditing of undocumented mobile APIs, a jailbroken iOS device with https://github.com/nabla-c0d3/ssl-kill-switch2 … is one of the most useful tools you can have in your lab
-
-
-
I find that the lack of obfuscation on most iOS apps makes it a more pleasant platform for any kind of dynamic analysis. If you have already messed around with apktool/JADX on Android, then learning Frida with iOS is a lot of fun.
Show this thread -
the OWASP mobile crackmes are a great starting point https://github.com/OWASP/owasp-mstg/tree/master/Crackmes …
Show this thread -
I should eventually give a proper talk on this to teach people "if their mobile app can get this data in a machine readable format or interact with this service programmatically, so can you". It's really not rocket science and can be easily condensed into a 45 minute lecture.
Show this thread
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.