Meiklejohnian absolutist. free speech as in free-for-everyone.
mutuals: 
If you do any kind of reverse engineering or auditing of undocumented mobile APIs, a jailbroken iOS device with https://github.com/nabla-c0d3/ssl-kill-switch2 … is one of the most useful tools you can have in your lab
Show this thread
it's so nice just being able to flip a switch and not have to deal with frida or patching an APK to bypass pinning
-
-
I find that the lack of obfuscation on most iOS apps makes it a more pleasant platform for any kind of dynamic analysis. If you have already messed around with apktool/JADX on Android, then learning Frida with iOS is a lot of fun.
Show this thread -
the OWASP mobile crackmes are a great starting point https://github.com/OWASP/owasp-mstg/tree/master/Crackmes …
Show this thread -
I should eventually give a proper talk on this to teach people "if their mobile app can get this data in a machine readable format or interact with this service programmatically, so can you". It's really not rocket science and can be easily condensed into a 45 minute lecture.
Show this thread
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.