Analysis of the pixel 6 bootloader, ROP, emulation notebook eshard.com/posts/pixel6_b…

Here's the part 2 of the #Pixel6 bootloader exploit. A bit more technical, we play with emulation framework Unicorn and work through ROP towards having read and write primitives.⬇️ eshard.com/posts/pixel6bo…

The part 3 is here! 👇 The next step on the exploitation of Google's #Pixel6 is to be able to directly execute our own code without using ROP programming. #AppSec #Android18 #cybersercurity eshard.com/posts/pixel6_b…

Follow up for some exploitation of the Pixel6 bootloader is available eshard.com/posts/pixel6_b…

got asked about the Pixel6 ABL vulnerability android.googlesource.com/platform/syste…

Android 12 graphical stack virtualization eshard.com/posts/Android-…

J'ai donné mon accord pour la collecte des données horaires le 16 Janvier 2023 sur mon Linky... Je trouve des données vieilles de plus de 2 mois cependant... 🤬 Enedis vous pouvez m'expliquez SVP? Respectez-vous les autorisations données par vos clients?

👍

The recording of our (me, Leonid Bezvershenko, Georgy Kucherin) #37c3 talk “Operation Triangulation: What You Get When Attack iPhones of Researchers” was published! media.ccc.de/v/37c3-11859-o…

🎅

Getting one step closer to open source iPhone & SEP emulation on #QEMU thanks to github.com/ChefKissInc/QE… by Visual Ehrmanntraut and github.com/chris-pcguy!

We needed tools to perform advanced security investigations on iOS. But those tools didn’t exist yet... or weren’t openly available. So we created our own. We’ve fully emulated iOS on #QEMU using only open-source technologies. And this is just the beginning.

How does it look ?

Behind every tap on your favorite app there's a chain of memory operations, network requests, and deep system activity. We recorded Spotify, Telegram, and Amazon using full-system emulation and time travel debugging. 👉eshard.com/posts/android-…

We’ll trace what really happens inside Telegram when you send or receive a message. 📨 Learn how to capture clean execution traces for Time Travel Analysis, step by step. Register here: eshard.eventbrite.fr 👈 #android #cybersecurity #mobileapp #telegram

Our journey with the #iOS emulator continues. We show how we reached the home screen, enabled multitouch, unlocked network access, and started running real apps 👉 eshard.com/posts/emulatin…