about
posts
- Exploiting Qualcomm EDL Programmers (5): Breaking Nokia 6's Secure Boot
- Exploiting Qualcomm EDL Programmers (4): Runtime Debugger
- Exploiting Qualcomm EDL Programmers (3): Memory-based Attacks & PBL Extraction
- Exploiting Qualcomm EDL Programmers (2): Storage-based Attacks & Rooting
- Exploiting Qualcomm EDL Programmers (1): Gaining Access & PBL Internals
- Untethered initroot (USENIX WOOT '17)
- Nexus 9 vs. Malicious Headphones, Take Two
- initroot: Hello Moto
- initroot: Bypassing Nexus 6 Secure Boot through Kernel Command-line Injection
- OnePlus OTAs: Analysis & Exploitation
- Owning OnePlus 3/3T with a Malicious Charger: The Last Piece of the Puzzle
- OnePlus 3/3T OxygenOS Unauthorized Boot Mode Changing
- Attacking Nexus 9 with Malicious Headphones
- Owning a Locked OnePlus 3/3T: Bootloader Vulnerabilities
- fastboot oem selinux permissive
- BootmodeChecker
- fastboot oem {config bootmode, enable-bp-tools/hw-factory}
- fastboot oem sha1sum
- fastboot oem panic
- Android Serialization Vulnerabilities Revisited (RSAC USA '16)
- One Class to Rule Them All (WOOT '15)
- (CVE-2014-8889) Remotely Exploitable Vulnerability in the Dropbox SDK for Android
- SpoofedMe
- Attacking the Linux PRNG On Android (WOOT '14 / BlackHat EU '14)
- (CVE-2014-3500/1/2) Remote Exploitation of Apache Cordova
- Android KeyStore Buffer Overflow (CVE-2014-3100)
- About the impact of the BIND SRTT Vulnerability
- Firefox for Android Vulnerabilities: Overtaking Firefox Profiles
- Android Fragment Injection
- Subverting BIND’s SRTT Algorithm (WOOT '13)
- Android DNS Poisoning: Randomness gone bad (CVE-2012-2808)
- Attacks on the IS-IS routing protocol
- Android SQLite Journal Information Disclosure (CVE-2011-3901)
- DNS poisoning via Port Exhaustion #3 on Top Ten Web Hacking Techniques of 2011!
- DNS poisoning via Port Exhaustion
- Android Browser Cross-Application Scripting (CVE-2011-2357)
- Babylon Cross-Application Scripting Code Execution
- Exploitation of CVE-2009-1869
- Advisory: Adobe Flash Player and AIR AVM2 intf_count Integer Overflow
- Adobe Flash Player Integer Overflow Remote Code Execution
- Apple QuickTime Image Description Atom Sign Extension Memory Corruption
- Adobe Flash Player Update
- Graphviz Buffer Overflow Code Execution
- Untrusted Gateways - Open wireless networks