Tweets from September 2013

RT @julianvilas: “@as0ler: [Blog Post] Bypassing iOS 7 lockscreen with Siri http://t.co/KKYJNIZccW #testpurposes” A new one (diff. from other disclosed toda

11:12pm September 30th 2013 via Falcon Pro

RT @AndroidPolice: [Security] Vulnerability In Firefox For Android Discovered That Allows Hackers To Steal Files From The SD Card... http://t.co/QVWg1tcqh8

10:14pm September 30th 2013 via Falcon Pro

RT @adamely: iOS 7.0.2 lock bypass. Just another reason why I always turn off things accessible from the lock screen: http://t.co/8WyiU2fmoO

7:10pm September 30th 2013 via Falcon Pro

RT @radareorg: After some commits I managed to load an ARM64 MACH0 kernel into r2. #iphone5s #xnu #kernel #aarch64 #arm64 http://t.co/DUfK49Uwx8

4:25pm September 30th 2013 via web

RT @EternalTodo: Hispasec released an official DroidBox patch to support Android 4.x branch http://t.co/YPZJ4EB32w http://t.co/kMCejNTiUU Great work, guys!

2:28pm September 30th 2013 via Falcon Pro

@IsmaGNU @ePandu yes, but I'm not interested in Netflix or hulu content...

10:12am September 30th 2013 via Falcon Pro in reply to IsmaGNU

@ePandu at the moment adb and telnet access with a root shell :)

9:15am September 30th 2013 via Falcon Pro in reply to ePandu

Finally received the USB OTG powered cable and got my #chromecast rooted, thanks #GTVHacker! :-) http://t.co/r9cqq1l4Kh

8:59am September 30th 2013 via Falcon Pro

@trufae that's because your 1yo has a dirty mind as a previous iOS 6 user, you should do the test with a new baby who has never used iOS 6.

7:05pm September 28th 2013 via Falcon Pro in reply to trufae

RT @grsecurity: http://t.co/LwNQ0NIeRR SEAndroid can be rendered useless by a kernel compromise, so claims to prevent kernel compromise via integrity checks

6:07pm September 28th 2013 via Falcon Pro

RT @Serianox_: @grsecurity From the whitepaper, looks like they simply ported IMA to their TEE. Expect TOCTOU. :) http://t.co/Lu1OsrCthB

6:06pm September 28th 2013 via Falcon Pro

RT @grsecurity: Any research on Samsung KNOX's TIMA? Is it as useless and TOCTOU-prone as I expect against the threat they claim to defend against?

6:04pm September 28th 2013 via Falcon Pro

RT @jduck: Just posted a teaser of my addJavascriptInterface @Metasploit Exploit module -- https://t.co/W2pwedFtR9 -- Still needs some work to release.

8:38am September 28th 2013 via Falcon Pro

RT @NicolasFalliere: Thanks to @odexcide and @TeamAndIRC for their JEB plugins! see http://t.co/nOiRTIc6Q8. Also, minor update for JEB 1.4 is shipped today.

10:06pm September 27th 2013 via Falcon Pro

pin can have up to 17 characters RT @e_kaspersky: OMG.. -> 3D-Printed Robot Cracks Your Android PIN Code http://t.co/q7jEQzhjnu h/t @k1k_

7:08pm September 27th 2013 via TweetDeck

Google account creation: mobile vs web! -http://t.co/S3TxhoejQE

5:54pm September 27th 2013 via web

How to emulate a chromecast update check using curl (to get the new OTA link) - http://t.co/tEqiEyBpi1

5:46pm September 27th 2013 via TweetDeck

@noir yep, is the same paper linked in the BI article... news from 2011 :/

5:15pm September 27th 2013 via TweetDeck in reply to noir

RT @noir: @pof A coworker remembered reading the article before. We found a version that has a copyright– 2011 http://t.co/m4rEaEDtrt

5:14pm September 27th 2013 via TweetDeck

@noir yeah, very sensationalist headline

4:03pm September 27th 2013 via Falcon Pro in reply to noir

@noir sure, but the technique to catch the keystrokes is still neat :)

4:02pm September 27th 2013 via Falcon Pro in reply to noir

RT @kapitanpetko: Using the SIM card as a secure element in Android http://t.co/gL981RWYtv

3:56pm September 27th 2013 via Falcon Pro

RT @Angelill0: Just Having A Smartphone Near Your Computer Could Be A Security Risk Soon Read more: http://t.co/tjEf6tnFW6

3:56pm September 27th 2013 via Falcon Pro

RT @j4istal: Catch my presentation "Android Master Key & Beyond" today at BSidesPDX! http://t.co/QhOq3zj9uq #BSidesPDX

3:50pm September 27th 2013 via Falcon Pro

sure, cool! -> RT @odexcide @pof looking for someone to try out my JEB plugin from a different OS. Care to try? http://t.co/NQb83NiNDG

2:44pm September 27th 2013 via Falcon Pro

Fetching Google Play Android ID and Authentication Token programmatically - http://t.co/xTAQVbMsjY

2:33pm September 27th 2013 via TweetDeck

RT @agustingianni: Slides for our #ekoparty2013 talk about Android Exploitation. Any comments are welcome. https://t.co/E0JXXOWq4b

2:29pm September 27th 2013 via web

RT @m_spreitz: Detecting Android Malware with the help of Machine Learning -- http://t.co/vB6j8DzDzc

11:39am September 27th 2013 via Falcon Pro

how to check #chromecast build version before connecting it to the internet: chromecast_ip:8008/setup/eureka_info http://t.co/3nmtBrAgzm

11:07pm September 26th 2013 via web

RT @8bitpeoples: We're back online – go ahead and grab some music 🎶 • http://t.co/xbDczWhDPL

4:05pm September 26th 2013 via Falcon Pro

@rhcp011235 no worries, I've already ordered a couple :)

3:34pm September 26th 2013 via Falcon Pro in reply to rhcp011235

@rhcp011235 if you have the right powered microusb otg cable, which I don't have yet :(

3:32pm September 26th 2013 via Falcon Pro in reply to rhcp011235

trying to root the chromecast with a slightly different cabling setup now, still no luck :( http://t.co/YjPc2X2PtK

1:28pm September 26th 2013 via Falcon Pro

getting this on screen with my chromecast rooting setup... doesn't seem to work :/ http://t.co/89CtVDS7mm

12:44pm September 26th 2013 via Falcon Pro

meant *powered* microusb otg in my previous tweet...

12:27pm September 26th 2013 via Falcon Pro

will the setup in the picture work to root a #chromecast? or a microusb otg is a must? /cc @Zenofex http://t.co/vKeBVeiru4

12:24pm September 26th 2013 via Falcon Pro

RT @evdokimovds: @thegrugq @mdowd @pof may be it will be interesting. Project from Parallels http://t.co/wpjzYcO8lK [Ru]

9:10am September 26th 2013 via web

RT @TeamAndIRC: so @djrbliss 's vuln in my backdoor has a higher subscore than my backdoor https://t.co/6OxvFNBgpy

7:31am September 26th 2013 via web

RT @djrbliss: Hey @Motorola, you've got a vulnerability in the implementation of your backdoor: https://t.co/XMcpXQN5fA :p

7:30am September 26th 2013 via web

quick & easy Android emulator kernel debugging setup using gdb - http://t.co/yTRBqECfCG

9:58pm September 25th 2013 via Falcon Pro

RT @KismetWireless: A more in-depth writeup on MWR Labs drive-by Android execution and what I hope to fix with Smarter W-ifi Manager: http://t.co/vQfcK37drn

9:34pm September 25th 2013 via Falcon Pro

RT @TeamAndIRC: MotoX update's change log is missing two fixes, first being bug 9695860 (2nd masterkey) and second being bug 8833099 (backup vuln)

9:05pm September 25th 2013 via Falcon Pro

RT @mattcarr1981: @SamsungMobileUK is this legit? Lots of typo's makes me believe is fake and dangerous http://t.co/HN0mUvMHOC

10:19am September 25th 2013 via Falcon Pro

RT @lunixbochs: I wrote my own blogging platform in order to post this: Anatomy of a Jailbreak Trojan - http://t.co/cSFOoTb4yY

10:18am September 25th 2013 via Falcon Pro

Presentation by @creativemisuse at Ruxcon 2012: Firefox OS Application Security - (video) http://t.co/WLdqU2KBFY

8:17am September 25th 2013 via web

Presentation by @collinrm at Ruxcon 2012: Binary Instrumentation for Android - (video) http://t.co/WgCNpolZEy

8:16am September 25th 2013 via web

RT @agelastic: Nice ARM intro (if you need another one) http://t.co/Vi97OdiQ1U

8:05am September 25th 2013 via Falcon Pro

RT @eurotrashsec: Eurotrash episode 41… the missing @pof interview is now live in the feed and here --> http://t.co/csYBdKjFAd

7:24am September 25th 2013 via Falcon Pro

RT @timstrazz: @TeamAndIRC s/debug\/testing\/engineering\/backdoors/

6:27am September 25th 2013 via Falcon Pro

RT @TeamAndIRC: Remember to remove unnecessary debug/testing/engineering features in production code. https://t.co/7ZrjpeUc0a

6:27am September 25th 2013 via Falcon Pro

RT @CyanogenMod: Privacy Guard 2.0 With the release of Android 4.3, Google (quietly) introduced functionality known as 'AppOps'.… http://t.co/PYOrWl6cu1

10:58pm September 24th 2013 via Falcon Pro

@Bartralot has de fer-ho com a root, fes un 'su' primer. Mira els comentaris del blog.

5:18pm September 24th 2013 via Falcon Pro in reply to Bartralot

RT @reyammer: @jduck @mwrlabs @nmonkee a paper on that "feature" was actually published (with less powerful attacks) at ACSAC'11 http://t.co/1cF106kw2v

5:09pm September 24th 2013 via Falcon Pro

RT @Keltounet: People with oldish GPG key (ahem, like me) should check this site whether you should generate a new one https://t.co/M4zD7dk2ek via DES

2:30pm September 24th 2013 via web

@beist congrats, is it for anything specific like smart TVs or Android?

2:18pm September 24th 2013 via Falcon Pro in reply to beist

RT @nmonkee: Blog post and advisory from @44CON talk WebView addJavascriptInterface Remote Code Execution http://t.co/rkV196VIto & http://t.co/6QrhBT1SiJ

1:48pm September 24th 2013 via web

RT @mwrlabs: Code execution on most android devices through MitM http://t.co/HcobhUhuMd by @nmonkee

1:46pm September 24th 2013 via web

XDA:DevCon presentations available here - http://t.co/HPsWOMWbvz

12:19pm September 24th 2013 via web

Android Security Presentation from @TeamAndIRC at XDA:DevCon2013 - [video] http://t.co/aMEgQT44Gl & slides: http://t.co/7pFViHM6iH

12:17pm September 24th 2013 via web

RT @AndroidPolice: Full Remote Device Lockdown Is Now Live In The Android Device Manager, Instantly Overrides Previous Lock Settings... http://t.co/W26oukIbfP

6:24am September 24th 2013 via Falcon Pro

RT @opersys: "Android Platform Debugging and Development" at ELCE: http://t.co/kgA05awna6

9:18pm September 23rd 2013 via Falcon Pro

nice article: Android Security, Pitfalls and Lessons Learned - [PDF] http://t.co/89OJ0djWwF

10:22am September 23rd 2013 via web

RT @newsycombinator: Vimdeck - Vim as a presentation tool https://t.co/139CZHNQ54

9:11pm September 22nd 2013 via Falcon Pro

RT @roman_soft: Had a blast at #lacon2k13 . Good talks & impressive ppl. A big thank you to this year's organization: Pancake, L, Gadix & Pof (@48bits f

9:07pm September 22nd 2013 via Falcon Pro

RT @ForbesTech: Apple has yet to fix one nasty bug in the lockscreen of iOS 7, and the next one has already appeared. http://t.co/XqZr1GBGRr

8:24am September 22nd 2013 via Falcon Pro

RT @PatchDroid: PatchDroid project is completed. Paper available here: http://t.co/kw3NeDKFYQ talk at ACSAC 2013

8:13am September 22nd 2013 via Falcon Pro

RT @a_greenberg: iOS 7 Bug Lets Anyone Bypass iPhone's Lockscreen To Hijack Photos, Email, Or Twitter http://t.co/oMZPxbw2tm

12:21am September 20th 2013 via Falcon Pro

RT @jduck: If using ADB seems tedious, try this: http://t.co/X1EXEJepnz (REQUIRES BUSYBOX). Changes terminal size and working directory automatically.

12:14am September 20th 2013 via Falcon Pro

RT @timstrazz: Detect #Android emulators? Let AOSP just tell you how… http://t.co/Wd9npSsKs0

11:49pm September 19th 2013 via Falcon Pro

RT @xdadevelopers: Framaroot Brings One-Click Root to Various Devices http://t.co/vZkuxX1Doo

11:25am September 19th 2013 via Falcon Pro

RT @teamcymru: Here are the basics to remember about the Firefox OS security model : http://t.co/HHFdToLSbP

11:20am September 19th 2013 via Falcon Pro

RT @beist: I spend much time on android these days but am still looking forward to this book http://t.co/QurQCOgq5I friends on it ;) sure it'll be cool

10:55am September 19th 2013 via Falcon Pro

Cells: multiple isolated virtual Android instances running on a single device, has been open sourced - http://t.co/0qr2UpdOlY

9:03am September 19th 2013 via web

@aitorgrandes ole que destreza construyendo la cabaña! :)

10:25pm September 18th 2013 via Falcon Pro

RT @Fin_CyanogenMod: I would like to announce that @pof has joined our project as lead wine connoisseur and antipasta inspector general

9:45pm September 18th 2013 via Falcon Pro

RT @jduck: . @Fin_Cyanogenmod @koush I guess I should resend this memory corruption bugs in Superuser advisory to you?!

8:59pm September 18th 2013 via Falcon Pro

@AndroidObs what about integrating with 3rd party services like virustotal or andrototal?

3:28pm September 18th 2013 via Falcon Pro in reply to AndroidObs

RT @0xroot: Now that Firefox updated their app for Android here is the video exploiting the vulnerabilities I found some time ago http://t.co/Snsc6XDl2E

12:04pm September 18th 2013 via Falcon Pro

51 hours to go and 900K goal reached, @omatetruesmart comes with an extra battery! - http://t.co/0R3Awqb5on

11:04am September 18th 2013 via web

RT @snare: Today is "FUCK YOU IDA" day. IDA Bro. http://t.co/4VPOVch7lM

9:59am September 18th 2013 via Falcon Pro

RT @d0tslash: Analyzing an Android WebView exploit - http://t.co/dedZgARM0Y

11:51pm September 17th 2013 via Falcon Pro

RT @AndroidObs: @pof Excessively large keysizes? We've got those too! https://t.co/jlOKGEru8A

10:47pm September 17th 2013 via Falcon Pro

RT @AndroidObs: @pof You might be interested in our latest revision. You want key data? We got it! RSA 512 in the wild? Believe it! https://t.co/PC8FLxLkSV

10:47pm September 17th 2013 via Falcon Pro

@jbqueru @Yahoo congratulations! we'll miss you in AOSP

3:43pm September 17th 2013 via Falcon Pro in reply to jbqueru

RT @carlosacastillo: A look at WeChat security http://t.co/Q3NOjgXzQd - Security weaknesses in Android versions of WeChat up to 4.5.1 (and possibly others)

3:38pm September 17th 2013 via Falcon Pro

RT @alsutton: Shows missing bug-fixes; “@funkyandroid: The change log for #AOSP releases 4.3_r2.2 and 4.3_r3 is now available from http://t.co/oQDAnFFxr6”

10:43am September 17th 2013 via Falcon Pro

RT @timstrazz: Just fixed a hand full of odex #Android #Dalvik issues with the #010Editor template https://t.co/3sSklhVa3b

10:42am September 17th 2013 via Falcon Pro

RT @AndroidPolice: Android 4.3 JLS36C Factory Image, Binaries, And AOSP Code (Marked 4.3_R3) Posted For The Nexus 7 2013 LTE http://t.co/GHuvEajBdr

6:25am September 17th 2013 via Falcon Pro

@OscarB si, es lo q he leído, pero pregunto a ver si cuela... aunque ya se que vs a ser que no :/

10:34pm September 16th 2013 via Falcon Pro in reply to OscarB

@simyo_es puedo tener 2 SIMs con el mismo número/contrato?

10:22pm September 16th 2013 via web

RT @readyState: Insight into the Android docs "I haven't actually read the code, didn't write it, and haven't tested its behaviour…" https://t.co/KquZad6SLB

6:45pm September 16th 2013 via Falcon Pro

RT @trufae: The future of iOS and Android /via @urgui http://t.co/4qOM1epF5c

3:00pm September 16th 2013 via Falcon Pro

3 days left to order your @omatetruesmart Android smwartwatch if you still haven't - http://t.co/0R3Awqb5on

2:46pm September 16th 2013 via web

RT @whatsbcn: Local IP discovery with HTML5 WebRTC: Security and privacy risk?https://t.co/meDHTXypSP

1:54pm September 16th 2013 via Falcon Pro

RT @xdadevelopers: Block Android Intent Broadcasts with ReceiverStop for Xposed http://t.co/v1tLeftLes

7:17am September 16th 2013 via Falcon Pro

RT @AndroidPolice: [APK/Website Teardown] Next Up For Android Device Manager: Remote Password Changing And Device Locking http://t.co/G8HCT4kPMo

6:19am September 16th 2013 via Falcon Pro

Getting method coverage in Android (dalvik mod) - http://t.co/VVqk8mEW2m

11:21am September 15th 2013 via Falcon Pro

RT @TeamAndIRC: An explanation of the write protection bypass for MotoX / new Droids can be found here https://t.co/3cHNul5w5F

8:31am September 15th 2013 via Falcon Pro

RT @TeamAndIRC: [Root/Write Protection Bypass] MotoX (no unlock needed) http://t.co/o7DulYXSEA

8:31am September 15th 2013 via Falcon Pro

RT @aionescu: Attention clueless "tech journalists": 32-bit ARM supports 1TB of RAM. Stop writing articles on how 64-bit ARM is about enabling 4GB devices

5:43pm September 14th 2013 via Falcon Pro

RT @andresPSN: no soy ni independentista ni nacionalista, pero... http://t.co/WAReOIEqJf

5:16pm September 14th 2013 via Falcon Pro

RT @TeamAndIRC: Props to google, detecting my root/wp apk as potentially malicious already http://t.co/bHE4gioKtx

10:55am September 14th 2013 via Falcon Pro

RT @timstrazz: A quick #010Editor script for fixing modified #Android #Dalvik (dex) files https://t.co/qRxS0L9dfL :D

10:18pm September 13th 2013 via Falcon Pro

@TeamAndIRC how have you done it on the motox? (/me being lazy, haven't even downloaded what u published)

7:14pm September 13th 2013 via Falcon Pro in reply to TeamAndIRC

@TeamAndIRC any hints on how to go from root to /system (and/or recovery) rw on stock 4.3? (without a su daemon I mean)

7:09pm September 13th 2013 via Falcon Pro in reply to TeamAndIRC

RT @TeamAndIRC: [Root] Droid Ultra / Maxx / Mini http://t.co/kTVXjHMj8I

3:41am September 13th 2013 via Falcon Pro

RT @s7ephen: Worried about "juice jacking"? We made a thing you'll like: USB Condoms http://t.co/TidoOL90ua start sellin next week http://t.co/rXAuMeFkrP

3:32am September 13th 2013 via Falcon Pro

RT @timstrazz: Added error checking the header expect values (file size, checksums) to the #Android #Dalvik #010Editor template https://t.co/7IOwvXf35G

3:28am September 13th 2013 via Falcon Pro

RT @thezdi: Announcing Mobile Pwn2Own 2013! Start going through your mobile device crashes and we'll see you in Tokyo! #pwn2own http://t.co/QwbGTHoTnx

3:46pm September 12th 2013 via Falcon Pro

RT @a0rtega: Blog post, How did I get a root shell in my NAS, 0day inside http://t.co/8CopqYiwL2 #reversing #exploiting

3:43pm September 12th 2013 via Falcon Pro

Arxan EnsureIT for Android - http://t.co/ljji71ddCD Anyone seen a sample APK protected with this yet?

3:19pm September 12th 2013 via web

PSA: Think About Stronger App Signing Keys - http://t.co/VVQ6Y31nZO via @commonsguy

1:37pm September 12th 2013 via Tweet Button

missed this last week, CyanogenMod app-level patch to SecureRandom - http://t.co/4EpNN8vsf4 (via @prodrigestivill)

9:45am September 12th 2013 via web

RT @AndroidPolice: [Security] Firefox For Android Can Be Tricked Into Automatically Downloading And Executing Malicious Code http://t.co/KTEfEEtc8X

9:34am September 12th 2013 via Falcon Pro

RT @trufae: My slides of my talk about porting a Gameboy emulator to #FirefoxOS at @BcnJS http://t.co/XPuX3dhv0l

9:58am September 11th 2013 via Falcon Pro

RT @xdadevelopers: Xposed Framework 2.2 Brings Module Repo and 4.3 Support http://t.co/sBlTV6MyBG

6:42am September 9th 2013 via Falcon Pro

@cryptax it worked when I twitted it :/

9:28pm September 5th 2013 via Falcon Pro in reply to cryptax

RT @TeamAndIRC: Quick JEB Plugin to rename classes/methods/fields from non-latin names to easier to read names https://t.co/wzflXTeSrH

3:41pm September 2nd 2013 via Falcon Pro

hotspot bypass script in action, running on Nexus 7 (2013). http://t.co/U5580lFpVd

3:40am September 2nd 2013 via Falcon Pro

Bypass most captive portal wifi hotspots: * on your Linux pc - https://t.co/iogv8sV6cJ * on your Android device - https://t.co/TuqJdD7EbW

1:29am September 2nd 2013 via web

Handy Google Play APK downloader (by package name or url) - http://t.co/uINK22bYbO

6:30pm September 1st 2013 via web