Pau Oliva Follow @pof

RT @CopperheadOS: Need to keep in mind the SELinux layer when looking at Android's seccomp policies like https://t.co/d0vu3Q0uts and https://t.co/MNreSH6p8i.

RT @virqdroid: How to View TLS Traffic in Android’s Logs - https://t.co/k7baj4swen

RT @koush: Yay Electron. https://t.co/9KKsWS62tW

RT @x0rz: Google Chromium fork removing Google integration and enhancing privacy, control, and transparency https://t.co/YgXB2Cc6bJ #privacy #chrome

Reliable Third-Party Library Detection in Android and its Security Applications - [PDF] https://t.co/QZQwHjTX51

RT @cryptax: @ikoz @pof the #dockerfile for the #Android #RE image is here: https://t.co/XNcdDanmvU - feel free to adapt & have fun.

RT @cryptax: I created an #Android #reverse #engineering #docker image: docker pull cryptax/android-re. Will be using it at #hack.lu workshop. Enjoy!

RT @duo_labs: Excited to have @pof from @IOActive present our very first London office Duo Tech Talk. https://t.co/Cd1HcULJnh

RT @revskills: CVE-2016-7545 -- SELinux sandbox escape https://t.co/feteaIf7p1

RT @docvalentine: did some fanart of my favourite character in street fighter 5 definitely the most entertainment i've gotten from th… https://t.co/LbvTWMvzU2

RT @ihackbanme: .@jduck's talk at DerbyCon: Stagefright An Android Exploitation Case Study W/ Release of CVE-2015-3864 in Metasploit https://t.co/4XDRuvhJxM

RT @jduck: Metasploit module for CVE-2015-3864 now available! https://t.co/nOzYBRYDKJ Pull Request: https://t.co/oZAm0FVGuM

RT @Morpheus______: #dextra reverse engineering tool for #dex/#ART fully updated for #Android #N, multi-dex oat, better decompilation https://t.co/kvjYAhPtiU

RT @jeffreycrowell: @radareorg is on @whoismrrobot :-) https://t.co/woJbnOXshi

RT @Csdxw47: Saw @radareorg on Mr Robot season two finale scene!! https://t.co/8L7yaJ7J95

RT @d_olex: Why TrustZone is more r/e friendly than System Management Mode: you easily can get all of the SMC handlers list https://t.co/T5NYnrqgUy

RT @IrssiProject: Irssi 0.8.20 is out. This is a security release and we URGE our users to read and RT this link: https://t.co/g0yJs29vku - thank you!

RT @atrox_at: Today at #Raid2016 I presented our work on carrier side IMSI Catcher / Stingray detection https://t.co/1n1tr50KSp https://t.co/hQn5Ib2txX

RT @collinrm: Mobile Security News Update September 2016 https://t.co/MdOLylrvw2 <-- Very Android Heavy

RT @mwrlabs: Just published @trotmaster99's Android Premium SMS warning manipulation vuln advisory: https://t.co/USJPfD15yk

RT @IOActive: @IOActive #HACKSOHO is 29/9 at the London Happy Hacker House. Food, music, video game hacking, oh my. Register today https://t.co/G0xG7brYyf

RT @keen_lab: We pwned Tesla Model S remotely (no physical contact) with a complex exploit chain. All details reported to Tesla. https://t.co/0qtBM2sSKW

RT @doriancussen: Updated notes on Android kernel permissions https://t.co/KVw61JLVXG #AndroidDev

RT @xdadevelopers: AutoMagisk - Automatically disable Magisk's root when certain apps are running - https://t.co/2pJyxAl9oe https://t.co/gQpa1Wty0q

RT @ChainfireXDA: suhide update to v0.51 https://t.co/qjcinfLxJi

RT @opexxx: ipinfo - Searches various online resources to try and get as much info about an IP/domain as p... https://t.co/LCUxgTYVim — Python OSS (o…

RT @xdadevelopers: Android Nougat is now working on the 2009 HTC HD2! #NoExcuses https://t.co/OgB7BPoFc7 https://t.co/C4yWQw7lRc

RT @NCCGroupplc: Blog post: Introducing BLESuite & BLE-Replay: Python Tools for Rapid Assessment of Bluetooth Low Energy Peripherals https://t.co/0b8VaxLnHe

RT @ChainfireXDA: SuperSU v2.78 SR1 (BETA) released - https://t.co/6eJIvKsPGo

I'll talk about Reversing Super Street Fighter 2X at @IOActive #HACKSOHO on Sep 29. RSVP at https://t.co/ZdnaOBPLO3 https://t.co/8UnZLqc2jY

RT @revskills: Android: racy getpidcon usage permits binder service replacement https://t.co/0LODV2eNYk

RT @thijs_br: Reverse Engineering Xiaomi’s Analytics app | https://t.co/zR2vvjuJKK

RT @evilsocket: working on AndroSwat, a tool to inspect, dump, modify, search and inject libraries into Android processes https://t.co/S3goDqQ68V

RT @natashenka: @jduck 1) Nope, not allowed 2) We'll look into it, thanks 😟

RT @jduck: . @natashenka couple of questions... 1) what about attack via rogue BTS/eNodeB (physical proximity required)? 2) what about TMO AUP?

RT @natashenka: Pleased to announce the Project Zero Prize. 200k prize for Android remote! https://t.co/QhS6JYHkK6

RT @jcase: Project zero drops an android bug a month b4 google could patch the Nexus devices. Love the "no special treatment" https://t.co/2vUP2mjR9x

RT @onceuponanop: If you want free Android kernel 0days, just track Qualcomm's QuIC disclosures. They drop a couple every month: https://t.co/WZckma9D3B

Capcom CPS2 Security Programming Guide - https://t.co/emzTnKNBYA thanks @edcrossed, @idcAvalaunch et al. for the awesome reversing job!

RT @radareorg: New blog post about the #r2con at https://t.co/iOMaYL9O2r! https://t.co/tU8faZqQGu

Hacking Street Fighter: CPS2 Encryption in Radare2 at #r2con Slides: [PDF] https://t.co/ZcAxzsKM4M Video: https://t.co/gT89YFbphN

RT @radareorg: Looks like r2 runs on iOS10 too :-) /thx @qwertyoruiopz https://t.co/3eVmQx6fxO

RT @r2gif: Amazing presentation from @pof about decrypting, patching, repacking and playing a hacked version of Street Fighter at #r2con !

RT @as0ler: Enjoying how @pof hack & play street fighter II using @radareorg at #r2con https://t.co/UsYwD5gdrd

RT @DEYCrypt: Hacking Street Fighter : CPS2 Encryption in radare2 by @pof at #r2con @radareorg https://t.co/eX19WWLpk8

RT @reyammer: My @IEEESSP S&P'16 talk on detecting logic bombs in Android apps is out! Check it out here: https://t.co/xd5TnfIZ1e

RT @radareorg: The slides for the #r2con “Radare from A to Z” slides are now online https://t.co/mYWMHdDlE7

RT @luanderock: Samsung Android Security Updates for September: https://t.co/DpP12N0h8B

RT @kapitanpetko: Official documentation about Android 7's file-based encryption (FBE) https://t.co/o7nOFC8wZw

The cake is a lie :) #r2con @radareorg @trufae https://t.co/V5w16VnJ3P

RT @ProjectZeroBugs: Android - libutils UTF16 to UTF8 conversion heap-buffer-overflow https://t.co/h1PVEPJgD2

RT @claud_xiao: There was an issue of libjhead crash on Android: https://t.co/bIDb26KWVy No idea whether it's related with CVE-2016-3862 @timstrazz

RT @maldr0id: Interesting and very detailed survey about the ELF based #Android #malware https://t.co/hTFABMIVW4

RT @benhawkes: Project Zero blog: "Return to libstagefright: exploiting libutils on Android" by Mark Brand - https://t.co/rFZOsRq8mj

RT @chengjia4574: @ScottyBauer1 @sagikedmi @fisher_the_cell I put the poc of cve-2016-3866 in github https://t.co/0f1NEUrWqx cause it had been disclosed

Keeping Android safe: Security enhancements in Nougat - https://t.co/cTEE99ThMs

RT @anestisb: Seems that Google is preparing another DEX based meta file container named VDEX - https://t.co/9RZ5wrEHDN

RT @kapitanpetko: Android APK v2 signature method, looks much better than JAR: https://t.co/RMNCP7qjFi

RT @jduck: Factory and OTA Images for the September Android Security Bulletin have been added to https://t.co/7KXbTP2gxX Enjoy!

RT @ProjectZeroBugs: Android: debuggerd mitigation bypass and infoleak https://t.co/GDuj15QM9v

RT @timstrazz: Here is the commit that killed all the bugs; TLDR replace c code with java code :D https://t.co/fYXahlNrO1

RT @timstrazz: Security Bulletin seems up now https://t.co/O7dfYu5Je1 with some details on CVE-2016-3862 :D

RT @CopperheadOS: @4Dgifts The recent Linux Security Summit presentation goes into a fair bit of depth on attack surface reduction: https://t.co/W4Is49cSt5.

RT @4Dgifts: Android Bootcamp 2016. "Defense in depth efforts" presentation (header may not be correct) https://t.co/m8aASk3HpF https://t.co/1AIOpRlSrC

RT @4Dgifts: This SafetyNet presentation from Android Security bootcamp is worth a read https://t.co/bkdUabp5hD https://t.co/eIeAoak73E

RT @thezdi: Announcing #Mobile #Pwn2Own 2016! Details and info now available. https://t.co/QqDGv0WLlV. Complete rules at https://t.co/8xYBO9MZdR #MP2O

Harvesting Inconsistent Security Configurations in Custom Android ROMs via Differential Analysis - [PDF] https://t.co/NkUNyWg2y3

RT @muellerberndt: Creative #ReverseEngineering on #Android https://t.co/cyI4JliANS https://t.co/akDf2wV7XE

RT @ChainfireXDA: suhide v0.16 - more fixes - better hiding on Nougat - https://t.co/3yNPUEg03Y

RT @raviborgaonkar: Parse Qualcomm DIAG format and convert 2G, 3G n 4G messages to GSMTAP for analysis in wireshark , from @zecke42 https://t.co/eTpH6iMOVw

RT @radareorg: Get ready for the congress! Published #r2con talk descriptions! (not just the titles) https://t.co/qhSMxfrKUX

RT @ikoz: Ever wondered how suhide works? My quick writeup: https://t.co/12RljXq7zV https://t.co/LUnX7TnGVr

RT @ChainfireXDA: suhide updated to v0.12 - fixes galore - https://t.co/aWR5wwFFxY

RT @jebdec: We are also publishing our intern's Android lib code matching plugin for JEB, https://t.co/WiWmq927Yx @UncleCat8 https://t.co/1NvM0zv1AD