With #DEFCON31 ending, I'm doing a wrap-up on Katalina, an open source Android deobfuscator that reimplements all of Dalvik VM from the ground up. source: github.com/huuck/Katalina… ppt: docs.google.com/presentation/d… blog: humansecurity.com/tech-engineeri… Happy reversing and thanks for attending!

Android Data Encryption in depth #MobileSecurity #AndroidSecurity by Maxime Rossi Bellom Damiano Melotti quarkslab blog.quarkslab.com/android-data-e…

Physical Attacks Against Smartphones #MobileSecurity #AndroidSecurity #BlackHatUSA23 [SLIDES] by Iskuri i.blackhat.com/BH-US-23/Prese…

Bad io_uring: A New Era of Rooting for Android #MobileSecurity #AndroidSecurity #BlackHatUSA23 [SLIDES] by Zhenpeng Lin i.blackhat.com/BH-US-23/Prese…

Endoscope: Unpacking Android Apps with VM-Based Obfuscation #MobileSecurity #AndroidSecurity #BlackHatUSA23 [SLIDES] blackhat.com/us-23/briefing…

Make KSMA Great Again: The Art of Rooting Android devices by GPU MMU features #MobileSecurity #AndroidSecurity #BlackHatUSA23 [SLIDES] by Thomas King - @[email protected] i.blackhat.com/BH-US-23/Prese…

Shown below is one half of what Google is bringing to Android phones: device-to-device eSIM profile transfers through QR code scanning. You'll also be able to "convert" a pSIM into an eSIM, but this will require carrier backend support (starting with T-Mobile/Deutsche Telekom).

Contrary to popular belief, you can use eSIM phone plans without needing a phone that supports eSIM. Why would you want that? Many prepaid eSIM plans are very cheap and can be bought ahead of travel, but most phones don't have an eSIM chip built-in. So how does this work? The

Android 14 blocks downgrading apps through the 'adb install'/'pm install' shell commands, unless the app is marked as debuggable. Previously, the May 2023 security release included a patch that only blocked downgrading system apps to a version older than the one preloaded on the

I just released a blog post on an Android ITW exploit chain: googleprojectzero.blogspot.com/2023/09/analyz… A big thanks to Google TAG and the other members of Project Zero who participated in the creation of this blog post and analysis of the chain!

💫 Here are my slides from my BSidesCanberra Keynote: "When Exploits Aren't Binary" 💫 github.com/maddiestone/Co…

bugs.chromium.org/p/project-zero… just derestricted. Potential untrusted_app -> kernel r/w 😬 Fix is not on any end-user devices AFAIK but fixes are in OEM's hands.

I just enabled MTE on my new Pixel 8!! 😁🔥 Check out Mark's blog on how to enable MTE on the Pixel 8 and Pixel 8 Pro: googleprojectzero.blogspot.com/2023/11/first-…

BLE spam but for adult toys Using Flipper Zero or nRF Connect app, it is possible to send Bluetooth LE advertisement packets (without being paired) to adult toys in vicinity and make them all vibrate. It is also possible to start Denial of Pleasure by continuously broadcasting

New blog on exploring AMD Platform Secure Boot including common misconfigurations and implementation issues. Enjoy the read at labs.ioactive.com/2024/02/explor… #AMD #Firmware

Please welcome Pau Oliva from IOActive, Inc to our lineup. He will dive deep into the fascinating world of retro game emulation, explaining techniques to hack emulators to enhance classic games with modern features. Tickets 👉lnkd.in/d2XwtVq5 #BSidesBCN24

Check out Pau Oliva's, Senior Security Consultant at IOActive, talk on retro game emulation at BSides Barcelona tomorrow, 30 May! Pau's talk kicks off at 1pm.

🚀 Just launched Cubedex – a new smartcube alg trainer to dril your algs like a pro! 🎉 Cubedex is a Progressive Web Application (PWA) that connects to your Gan smartcube using Bluetooth. 🧩 Try it out now: cubedex.app #cubing #speedcubing #GANcube #CubeDex