Tweets from April 2013

RT @radareorg: The javascript runs in the browser and the commands are executed on local or remote r2 sessions. See http://t.co/djKjuNrITs for a demo

1:49pm April 30th 2013 via Falcon Pro

Linux kernel 3.9 brings KVM virtualization on ARM, sweet!

9:44am April 29th 2013 via web

RT @djrbliss: Reversed most of the AT&T Galaxy S4 bootloader. Design seems solid, I don't expect it to be unlocked except by leak or key mgmt mistake.

11:57pm April 28th 2013 via Falcon Pro

RT @0xroot: Android Exploitation Framework (CProvider Injection + Path Traversal attack) is almost finished - http://t.co/9XaHb2tXXu w/ @marcograss

11:31pm April 28th 2013 via Falcon Pro

RT @gat3way: Hashkill now cracks Android FDE images master password. Speed is ~135k on 6870, ~270k/s on 7970. Android FDE is weak. http://t.co/mhcvEuEP48

6:40pm April 28th 2013 via Falcon Pro

RT @ChainfireXDA: Indeed, that also means you cannot use PS3 Controller, or use Gallery apps to transfer images from your camera to your phone on the @HTC One

3:22pm April 28th 2013 via Falcon Pro

RT @ChainfireXDA: @htc is currently whitelisting USB devices on the One. You cannot use DSLR Controller with it, unless you flash a custom kernel. #fail

3:22pm April 28th 2013 via Falcon Pro

RT @tkHWANG: Deep Dive into Android IPC/Binder Framework at AnDevCon IV - Marakana : Slide http://t.co/L6gIjb3kB4 Cast http://t.co/4itJnaSHla

10:14am April 28th 2013 via Falcon Pro

@MichaelTheDevel try using 'permissions denied' or 'lbe pribacy guard' apps. Otherwise, SEAndroid (mac permissions) or taintdroid...

8:49am April 28th 2013 via Falcon Pro in reply to MichaelTheDevel

@JZdziarski SEAndroid? or any other project?

9:32pm April 27th 2013 via Falcon Pro in reply to JZdziarski

US Navy to pay $1M to make Android more secure - http://t.co/EEeinw8S2f

5:56pm April 27th 2013 via web

Google Glass kernel GPL source (notle, build XRR02) - https://t.co/J7pZMsdyIE

5:50pm April 27th 2013 via web

@TeamAndIRC a simple strings on the SPL binary should reveal them...

10:41am April 27th 2013 via Falcon Pro in reply to TeamAndIRC

Looks like Google Glass has 'fastboot oem unlock', nice! :) - http://t.co/63SQJenvUB

6:46pm April 26th 2013 via Falcon Pro

Accelerating Android Development and Delivery, presentation by @adr0sen - http://t.co/Vqc62dyW54

11:52am April 26th 2013 via web

@timstrazz enjoy your drinks and don't forget to post slides when you're sober again ;)

7:29am April 26th 2013 via Falcon Pro in reply to timstrazz

RT @TeamAndIRC: Will be talking about vulnerabilities (read big derps) in Android firmware, including Cyanogenmod, Superuser, Kindle fire etc at XDA DevCon

6:32am April 25th 2013 via Falcon Pro

RT @0xroot: Edit the dalvik-bytecode on Android - https://t.co/mLVNdWEGnw

3:41am April 25th 2013 via Falcon Pro

RT @trufae: DexMaker - https://t.co/qXc0CBfCoP a Java API to create DEX files programatically #java #android #dalvik #dex

3:40am April 25th 2013 via Falcon Pro

RT @RootzWiki: Sony didn't actually add the Xperia Z to the official AOSP repo, but set up its own Github.

8:22am April 24th 2013 via Falcon Pro

RT @carlosacastillo: Critical flaw in Viber allows full access to Android Smartphones, bypassing lock screen http://t.co/maWMTmUYbg

8:21am April 24th 2013 via Falcon Pro

RT @carlosacastillo: Changing the IMEI, Provider, Model, and Phone Number in the Android emulator http://t.co/GtUJEhfrIr

8:19am April 24th 2013 via Falcon Pro

RT @kapitanpetko: Nothing new, but all in one place: Android code signing http://t.co/JB9IweRTlI

8:12am April 24th 2013 via Falcon Pro

RT @nullandnull: Super Mario Bros in a Shell Script - http://t.co/1m5WparOKE - Source Code [zip] https://t.co/omDbOwP65V

7:53am April 24th 2013 via web

RT @TeamAndIRC: .@djrbliss hits motorola again http://t.co/qSwLoaqN7d (warning, site requires login to see some aspects of the post)

8:18am April 23rd 2013 via Falcon Pro

RT @NicolasFalliere: SMS-spy ZertSecurity decompiled and analyzed, with sources at http://t.co/SBR8jC6bSB #JEB #decompiler #android #security

11:16pm April 22nd 2013 via Falcon Pro

RT @TeamAndIRC: @pof @HTC tamper detection deamon /sbin/tdp

3:11am April 22nd 2013 via Falcon Pro

RT @Newlog_: Shit! This is gonna be amazing! Modern Userland Linux Exploitation Courseware http://t.co/h6Ji64ZFeJ

3:01am April 22nd 2013 via Falcon Pro

RT @collinrm: Got a large contribution to my TAC database http://t.co/2VYREpSjMD (check feed/contrib/ folder)

2:22am April 21st 2013 via Falcon Pro

RT @0xb3nn: Updates to IGLogger and APKSmash pushed. Intent, SharedPrefs, & some SQL logging. http://t.co/y23tZZGPGY

11:03am April 20th 2013 via Falcon Pro

RT @aumasson: "I've Got 99 Problems, But Vibration Ain't One: A Survey of Smartphone Users' Concerns " http://t.co/RqBjCDIo3V

4:49pm April 18th 2013 via Falcon Pro

@wzzx @bluejay00 hitb, nosuchcon i troopers tb tenen bona pinta,

1:47pm April 18th 2013 via Falcon Pro in reply to wzzx

I liked a @YouTube video from @smoothmcgroove http://t.co/VOA53tKuGY Street Fighter 2 - Guile Theme Acapella

1:20pm April 18th 2013 via Google

RT @hteso: I have written a post with some clarifications on my talk at HITB. It can be found here: http://t.co/NpACnIi852 #HITB2013AMS

12:55pm April 18th 2013 via Falcon Pro

RT @xdadevelopers: Alternative Method for Taking Screenshots in Recovery http://t.co/huX544Wgvu

12:44pm April 18th 2013 via Falcon Pro

RT @AndroidPolice: Google Pushes New Android 4.2.2 Code To AOSP (JDQ39E, 4.2.2_r1.2) - Here Is The Developer Changelog http://t.co/5jgEZTphS2

12:58am April 18th 2013 via Falcon Pro

ACLU to FTC: Mobile carriers fail to provide good Android security - http://t.co/EXBEyXK18D

8:56pm April 17th 2013 via web

Complaint to FTC asking to investigate mobile carriers that don't provide timely security updates for Android - [PDF] http://t.co/8LRcl3OVTY

8:55pm April 17th 2013 via web

@frommelmak @ibelmonte @quetzal @oriolrius yo me apunto a birras y a cena, y si queréis a gintonic después también :P

7:52pm April 17th 2013 via Falcon Pro in reply to frommelmak

@NriaSaurina gràcies Núria, però ara mateix estic bé on estic i no m'interessa canviar.

11:20am April 17th 2013 via web in reply to NriaSaurina

@rhcp011235 i already know what it does, I know the authors IRL that's why I say it's legit and I trust it. :) /cc @P3Droid @TeamAndIRC

7:41am April 17th 2013 via Falcon Pro in reply to rhcp011235

@rhcp011235 @AndroidPolice @PatchDroid @threatpost @heisec @NakedSecurity it uses binary instrumentation to patch old vulnerabilities too

7:29am April 17th 2013 via Falcon Pro in reply to rhcp011235

@AndroidPolice totally understand your concerns here, but I know they are legit. /cc @PatchDroid @threatpost @heisec @NakedSecurity

6:57am April 17th 2013 via Falcon Pro in reply to AndroidPolice

RT @radareorg: I also plan to focus on better support fot Dalvik. Any comments regarding Android support are welcome!

8:34pm April 16th 2013 via Falcon Pro

so if you have a rooted Android phone which doesn't get updates anymore, give PatchDroid a try to stay safe - http://t.co/BQ01IumN9q

3:04pm April 16th 2013 via web

RT @PatchDroid: http://t.co/0NLV2rPTXU brings security fixes to unsupported Android devices. Please help evaluating it. Spread the word @pof @AndroidPolice

2:57pm April 16th 2013 via Falcon Pro

A System Call-Centric Analysis & Stimulation Technique to Automatically Reconstruct Android Malware Behaviors [PDF] http://t.co/V9ogzr33GF

10:00am April 16th 2013 via web

SELinux Notebook updates for SE Android - http://t.co/fcEiOiZirW & SEAndroid policy config details - http://t.co/ZXrTKf63nF

9:41am April 16th 2013 via web

LOL at CVE-2013-2596 & CVE-2013-3051. Who wrote this? /cc @djrbliss

4:28pm April 15th 2013 via web

@TeamAndIRC yes it works, and on the Android emulator too ;)

9:19am April 15th 2013 via Falcon Pro in reply to TeamAndIRC

@jbarrio es que n'hi ha alguna de bona d'envasada? totes les que he provat fan fàstic, com la natural de xufa no hi ha res!

1:15am April 15th 2013 via Falcon Pro in reply to jbarrio

@marcan42 same thing happened to me a few days ago, i just deleted the repo and created it again and it worked fine the 2nd time

5:23pm April 14th 2013 via Falcon Pro in reply to marcan42

RT @thorstenholz: Public interface to CopperDroid (Android malware analysis framework) available at http://t.co/iKRqmWkupy #EuroSec

12:23pm April 14th 2013 via Falcon Pro

@trufae raro raro, no m'ha passat mai :/

9:18am April 14th 2013 via Falcon Pro in reply to trufae

RT @beist: I just uploaded really basic ARM RE lecture slides. Naive yet but feel free to use it. http://t.co/OQ0HaEdyBX

7:46pm April 13th 2013 via Falcon Pro

@OLevitt i guess it leads ti fiq debugger, but i'm a noob as well so i'll let @theKos answer that ;)

2:15pm April 13th 2013 via Falcon Pro in reply to OLevitt

So, @collinrm will do 'Introduction to dynamic Dalvik instrumentation (on Android)' at @SummerC0n this June - http://t.co/IVNs7xUGvo

8:52am April 13th 2013 via web

RT @theKos: #infiltrate2013 is a fun con. Great content. And our talk was well received. Slides at http://t.co/xbw9swxkxH

7:50am April 13th 2013 via Falcon Pro

RT @iamnion: turning off usb debugging on #android useless thanks to a serial interface as shown by @michaelossmann and kyle osborn #infiltrate2013

7:50am April 13th 2013 via Falcon Pro

RT @radareorg: See radare2's commits like in the star wars movie! http://t.co/EWnpQJftCQ /via irc

4:45pm April 12th 2013 via Falcon Pro

Android Regex patterns for SMS short codes by country (includes regex that matches premium rate numbers as well) - https://t.co/6FErXSmp3i

10:39am April 12th 2013 via web

@timstrazz @Gunther_AR do they come pre0wned from factory? can you trust putting your Google credentials in there?

9:20am April 12th 2013 via Falcon Pro in reply to timstrazz

@timstrazz pics or it didn't happen! jk, enjoy your stay! :)

11:47pm April 11th 2013 via Falcon Pro in reply to timstrazz

"Android Security Underpinnings" by @MarkoGargenta, pretty good presentation - https://t.co/2g2C60HmNz

11:38pm April 11th 2013 via web

I liked a @YouTube video from @marakana http://t.co/B33RAlHAIA Android Security Underpinnings from Android Builders Summit

11:26pm April 11th 2013 via Google

radare2 command to patch the sha1 & adler32 checksum on a DEX file: wx `#sha1 $s-32 @32` @12 ; wx `#adler32 $s-12 @12` @8 thnx @trufae!

9:50pm April 11th 2013 via web

Dalvik patch to intercept each method call in a class - https://t.co/fTCgbAj8NN

2:27pm April 11th 2013 via web

@TeamAndIRC where is it? what about the wine quality?

11:35am April 11th 2013 via Falcon Pro in reply to TeamAndIRC

RT @TeamAndIRC: If you are interested in android security, you really need to follow @pof, and certainly pay attention to his retweets #ivehadtoomuchwine

11:33am April 11th 2013 via Falcon Pro

@kangsterizer had a rage moment, now found the bug and fixed it... #happycamper :D

1:19am April 11th 2013 via Falcon Pro in reply to kangsterizer

.@hteso's presentation made it to slashdot: Hijacking Airplanes With an Android Phone - http://t.co/x89BTLUEG5

9:51pm April 10th 2013 via Falcon Pro

@kanutron este 'habéis estado nunca' me'l apunto a la llista de catalanades :D

8:10pm April 10th 2013 via Falcon Pro in reply to kanutron

Motochopper: Yet Another Android Root Exploit by @djrbliss - http://t.co/rFK4NrX0td "it will also root lots of other non-Motorola devices.."

6:17pm April 10th 2013 via web

@Redapted yes, not a VT replacement, but nice to see

5:26pm April 10th 2013 via Falcon Pro in reply to Redapted

Andrototal: virustotal-like service for android APKs using mobile antivirus - http://t.co/0rLngrW4FY

4:48pm April 10th 2013 via Tweet Button

Themida 2.2.4.0 released tody - http://t.co/LquLGtpob1

9:16am April 10th 2013 via web

RT @hesconference: "HackRF: A Low Cost Software Defined Radio Platform" by Benjamin Vernoux http://t.co/lBtL3l1VyL #hackito #hes2013

4:35pm April 9th 2013 via Falcon Pro

@k3vinev jeje not yet, per aquí anar fent...

4:14pm April 9th 2013 via Falcon Pro in reply to k3vinev

RT @bSr43: Great! Someone started an Hopper script repository on Github: https://t.co/2hGEDFqNAC

8:54am April 9th 2013 via Falcon Pro

RT @TeamAndIRC: @jduck @djrbliss I also think unlimited.io hit trustzone for htc unlock in one of their exploits as well

7:38am April 9th 2013 via Falcon Pro

RT @jduck: It's great that @djrbliss finally publicly shattered the myth that TrustZone is the answer to security. WTG

7:38am April 9th 2013 via Falcon Pro

RT @hteso: If you plan to attend my talk at #HITB2013AMS, please try to read this post http://t.co/yJ1GO2vPEy

7:16am April 9th 2013 via Falcon Pro

RT @NicolasFalliere: How to extract assets from Dexguard-protected Android apps, see http://t.co/mvMtxRm1dr #jeb #android #decompiler

7:13am April 9th 2013 via Falcon Pro

RT @AndroidPolice: With The Help Of The XDA Community, Koush Releases A Universal ADB Driver For Windows That Actually Works on 8 http://t.co/cryAuMInk5

5:56pm April 8th 2013 via Falcon Pro

RT @hugofortier: Reversing and Auditing Android's Proprietary Bits by Joshua J. Drake @jduck http://t.co/b93DyxzZka

4:48pm April 8th 2013 via Falcon Pro

RT @azimuthsecurity: Azimuth's Dan Rosenberg (@djrbliss) finds Motorola TrustZone weakness, unlocks bootloader. Blog post: http://t.co/3q5zpe9NGs

3:39pm April 8th 2013 via web

RT @0xabad1dea: I’m going to commit a minor sin and timezone-repost my color coded disasm data flow chart because I think it’s cute http://t.co/l6DOzKvYIi

10:15pm April 7th 2013 via Falcon Pro

RT @0xroot: I just wrote an article: Keep calm and use radare2 to reverse Falcon Pro - http://t.co/RmgYvTSVCQ - (Spanish) English version next week :)

1:04pm April 7th 2013 via Falcon Pro

RT @tkHWANG: Android lessons for beginners (startandroid.ru) http://t.co/4QUFTJEN4J & Google + community http://t.co/L5iEKi4idZ

12:22pm April 7th 2013 via Falcon Pro

RT @swdunlop: Excellent for days where only a terminal will do: Vim customized to be like Sublime Text. https://t.co/Rg7veqNx1x

12:11pm April 7th 2013 via Falcon Pro

RT @solardiz: Linux KASLR patch by @djrbliss @keescook et al. proposed for mainline: http://t.co/kcOUYEdvQx @keescook on why KASLR: http://t.co/jKp7Krxxof

10:31pm April 5th 2013 via Falcon Pro

RT @iamnion: #AMI's #UEFI private signing key leaked. When security goes totally wrong, with the help of a security researcher http://t.co/sWSa0riFI5 m(

6:26pm April 5th 2013 via Falcon Pro

@chencho si :) hace ya bastantes años... cc @ibelmonte

6:23pm April 5th 2013 via Falcon Pro in reply to chencho

@ibelmonte @oriolrius @frommelmak será para el jueves 18, no? porque @quetzal ha dicho que llega a BCN el 14...

2:49pm April 5th 2013 via Falcon Pro in reply to ibelmonte

@hex_cat a mi un dia se'm volia colar al corte inglés, i "educadament" li vaig dir 'perdoni senyora, estava jo abans' :P

8:39am April 5th 2013 via Falcon Pro in reply to hex_cat

. @radareorg Android binaries (unstable branch) have been updated too! http://t.co/046ktIn7Ix

8:20am April 5th 2013 via Falcon Pro

RT @radareorg: Many bugfixes and optimizations related to dex and dalvik have been commited. Load speed should be 10x faster.

8:17am April 5th 2013 via Falcon Pro

RT @AndroidPolice: Google Allows Developers To Backup Data To Your Drive Account, Creates Custom Properties For Docs http://t.co/fy8WWW8siy

6:32am April 5th 2013 via Falcon Pro

RT @LambdaCube: The Android Security team is hiring for both system security and malware analysis jobs. Shoot me an email to sporst@google.com if interested

10:13pm April 4th 2013 via Falcon Pro

@TeamAndIRC @jduck yes, i saw the ALLOW_ADBD_ROOT define now, too late! :(

3:54pm April 4th 2013 via Falcon Pro in reply to TeamAndIRC

RT @Amon_RA: Nice Android Version History infographic : http://t.co/s4mRWpddqC (via @kellyrice88)

3:21pm April 4th 2013 via Falcon Pro

@odexcide yes, that's what @ChainfireXDA app does, and what I wanted to avoid ;) /cc @TeamAndIRC @jduck

3:05pm April 4th 2013 via Falcon Pro in reply to odexcide

@julianor you should follow him at @kapitanpetko :)

2:31pm April 4th 2013 via web in reply to julianor

RT @hdmoore: CVE-2013-1899: Nasty PostgreSQL flaw allows remote, preauth DB corruption, privilege escalation, and possible RCE: http://t.co/TbzFqqKB45

2:23pm April 4th 2013 via Falcon Pro

@TeamAndIRC @jduck now i see what u mean, had a report it doesn't work in @thomas_cannon's Note2 :(

1:37pm April 4th 2013 via Falcon Pro in reply to pof

@EternalTodo @Kachakil @esanfelix @whatsbcn @dreyercito @samsa2k8 afaik they end up in 8th position, but I might be wrong...

12:30pm April 4th 2013 via Falcon Pro in reply to EternalTodo

Two handy apps for Android reversing from Android itself: Dexdump https://t.co/Q0f7P8VWef and Dexplorer https://t.co/7OOW1mHuaE

12:15pm April 4th 2013 via web

@phr0nak woot! :D felicitats

11:28am April 4th 2013 via web in reply to phr0nak

RT @hashcat: Added support to crack Samsung Android Password / PIN to oclHashcat-plus: http://t.co/UT1fSMb4Uf Thanks to Bjoern Kerler for code reversal

9:49am April 4th 2013 via Falcon Pro

@TeamAndIRC adbd patched to ignore ro.secure=0 in a production build? never seen that, know which vendor/device? cc @jduck

8:21am April 4th 2013 via Falcon Pro in reply to TeamAndIRC

@TeamAndIRC @jduck works on all devices i have tried using 4.2.2

7:48am April 4th 2013 via Falcon Pro in reply to TeamAndIRC

@anantshri @jduck should work even with S-ON, it doesn't remount system nor replaces the adb binary at all

7:47am April 4th 2013 via Falcon Pro in reply to anantshri

@xaitax @shakal adb cannot run as root in production builds

7:46am April 4th 2013 via Falcon Pro in reply to xaitax

@anantshri i also prefer having adb in usermode, but it's sometimes handy to have it root (eg to adb pull some files) /cc @jduck

6:34am April 4th 2013 via Falcon Pro in reply to anantshri

@jduck why not? it just ptraces init process to change ro system properties, should work on any arm device as long as ptrace is available

6:32am April 4th 2013 via Falcon Pro in reply to jduck

RT @justinschuh: My thoughts on what Blink means for Chrome security: http://t.co/gCRQvyInPl

10:27pm April 3rd 2013 via Falcon Pro

RT @ChainfireXDA: Galaxy S4 GT-I9505 (Qualcomm LTE) rooted ! But will it last ? https://t.co/gNJ9Gkof7C

10:18pm April 3rd 2013 via Falcon Pro

@z4ziggy zcrackme@zimperium.com: host http://t.co/6KUr0Sk7QL said: 550-5.1.1 The email account that you tried to reach does not exist.

6:29pm April 3rd 2013 via web in reply to z4ziggy

RT @hdmoore: Avivore: A Twitter-based tool for finding personal data: http://t.co/4XwPbvQ620

5:37pm April 3rd 2013 via Falcon Pro

RootAdb: toggle adb daemon secure / insecure (needs root) - https://t.co/NTybIv2QMO

5:31pm April 3rd 2013 via Falcon Pro

RT @NicolasFalliere: A look inside the Android app protector Dexguard at http://t.co/0anEb9mTla #jeb android java decompiler

11:14pm April 2nd 2013 via Falcon Pro

RT @AndroidPolice: [Video] Watch A Galaxy S2 Run Two Instances Of Android At The Same Time With New Experimental Virtualization Tech http://t.co/a3eyOFnmud

10:42pm April 2nd 2013 via Falcon Pro

RT @Piwai: Sending the stupid random Android bug reports to /dev/null https://t.co/40P3O5j1K2 Yes! Crazy android Debug bug not fixed for over a year

10:38pm April 2nd 2013 via Falcon Pro

#volatility Android Application (Dalvik) Memory Analysis & The Chuli Malware - http://t.co/Ng5JVm8Qug

8:58pm April 1st 2013 via Falcon Pro