Ole André V. Ravnås

@oleavr

Creator of Frida. Security Researcher at NowSecure. Polyglot hacker passionate about reverse-engineering and dynamic instrumentation.

Stavanger, Norge
Vrijeme pridruživanja: ožujak 2009.

Tweetovi

Blokirali ste korisnika/cu @oleavr

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @oleavr

  1. Prikvačeni tweet
    10. kol 2019.

    Interested in supporting ? Do you build, test, or use mobile apps? Consider supporting the project by checking out the state of the art products powered by Frida that can plug into CI/CD. The symbiosis w/ OSS is awesome 🥰

    Poništi
  2. proslijedio/la je Tweet
    2. velj

    VSCode x * VSCode based GUI * Interactive terminal * Remote file browser (Yes!) * Open source Not on market yet. But you can built it from the source:

    Prikaži ovu nit
    Poništi
  3. proslijedio/la je Tweet
    2. velj

    My workshop just got accepted to EU 20! First time I'll be speaking in a real conference :) You're welcome to join if you want to learn how can be used to crack your toughest digital forensics problems.

    Poništi
  4. proslijedio/la je Tweet
    31. sij

    This afternoon don't miss our talks about and the recent work on MDS for CPU instrospection. 👉

    Poništi
  5. proslijedio/la je Tweet
    31. sij

    iOS no longer prints NSLog to Console app. I wrote this experimental VSCode extension to bring it back

    Poništi
  6. proslijedio/la je Tweet
    29. sij

    It’s been awesome building this tool by leveraging .

    Poništi
  7. proslijedio/la je Tweet
    28. sij
    Prikaži ovu nit
    Poništi
  8. proslijedio/la je Tweet
    28. sij

    My colleague Piergiovanni and I will present Brida 0.4 at Hack In Paris 2020 with a new graphical custom plugin generator and many useful built-in Frida hooks! See you there!

    Poništi
  9. proslijedio/la je Tweet
    23. sij

    r2frida 4.2 is out! You can now use breakpoints and eternalize scripts in ! /cc

    Poništi
  10. proslijedio/la je Tweet
    21. sij
    Poništi
  11. proslijedio/la je Tweet
    16. sij

    We just merged a PR that took 4 month to be cooked by and with huge changes in the analysis internals. If you had issues with some binaries (segfaults, infinite loops, overlapped functions,.. ) try again! It should be gone

    Poništi
  12. proslijedio/la je Tweet
    11. sij
    Poništi
  13. proslijedio/la je Tweet
    12. sij

    To be clear, articles like this are awesome. Not just because the technical bits are cool, but also because having reference implementations is great for devs forced to implement such schemes. (To avoid needing to reinvent the wheel and making mistakes that result in buggy apps.)

    Poništi
  14. proslijedio/la je Tweet
    11. sij
    Odgovor korisnicima i sljedećem broju korisnika:

    and the developer is forced to implement it. It's unfortunate if it becomes widespread, though, as it means there's potentially a ton of apps wasting precious CPU and battery scanning their own memory over and over. All just to satisfy someone's illusion of it adding real value.

    Poništi
  15. proslijedio/la je Tweet
    11. sij
    Odgovor korisnicima

    Yes, the Frida user's code runs before any of the app's code gets a chance to run. So the attacker always has the upper hand. The only real impact this has is making apps slower, more bloated, buggier, and eating more battery. But sometimes the stakeholders don't know any better,

    Poništi
  16. proslijedio/la je Tweet
    11. sij
    Odgovor korisniku/ci

    😎 But… The attacker tweaks a few strings in their frida-server binary using a hex editor, and the fun starts. The user gets their battery drained quicker when such code has been pasted into many popular apps. High price to pay for the illusion of slowing down attackers? 👇

    Poništi
  17. proslijedio/la je Tweet
    10. sij

    We just released TypeScript 3.8 Beta! Try out our new features like type-only imports, and ECMAScript features like private fields, `export * as foo`, top-level 'await', and more!

    Poništi
  18. proslijedio/la je Tweet
    5. sij

    New async-tungstenite 0.3 release, this time with integrated support not only for but also and 's gio. This release diverges from tokio-tungstenite now, which had no release with async/await support yet.

    Poništi
  19. proslijedio/la je Tweet
    4. sij

    Just removed the last bit of Vala code from Builder now that Builder uses 's GVls language server for Vala integration. Been wanting this for about 4 years. ✊

    Poništi
  20. proslijedio/la je Tweet
    2. sij
    Poništi
  21. proslijedio/la je Tweet
    2. sij

    . explains how to use the toolkit to conduct jailed testing of an iOS app on a jailed device — just one of the enhancements found in recent releases.

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·