Blog Posts

  1. 2021
  2. Semgrep - Matching JavaScript Imports
  3. Instrumenting JVM Programs With Frida
  4. 2020
  5. Gantix JailMonkey Root Detection Bypass
  6. 2019
  7. Analyzing Kony Mobile Applications
  8. Ghidra Plugin: JNIAnalyzer
  9. Notes on compiling the Android Kernel for AVD
  10. CVE-2018-11793: Apache Mesos Denial of Service Vulnerability
  11. 2018
  12. Experiments with Frida and WebAssembly
  13. Container Runtimes
  14. DrCov File Format
  15. CVE-2018-8023: Timing attack on the JWT implementation of Apache Mesos
  16. Using a non-system glibc
  17. What is Token Binding?
  18. Deconstructing Kony (7) Android Applications
  19. Protostar Walkthrough - Heap
  20. Protostar Walkthrough - Format Strings
  21. Protostar Walkthrough - Stack
  22. CVE-2018-8015: Denial of Service in Apache ORC
  23. CVE-2018-7889: Code execution when importing bookmarks into an Ebook
  24. Unauthenticated JSON-RPC API allows takeover of CryptoNote RPC wallets
  25. Nebula Walkthrough
  26. 2017
  27. A DNSSEC Primer
  28. 2016
  29. An interesting crypto vulnerability
  30. 2015
  31. A faster PBKDF2 for Python
  32. 2014
  33. Introducing python-aead
  34. Look before you pip
  35. Using a single password for Authentication and Encryption