|
Aleph Research
@
alephsecurity
|
|
Security Research by HCL Tech
|
|
|
46
Tweetovi
|
11
Pratim
|
1.507
Osobe koje vas prate
|
| Tweetovi |
| Aleph Research proslijedio/la je tweet | ||
|
jonathan Afek
@JonathanAfek
|
27. sij |
|
Can't wait to present the progress we've made since #BHEU at @offensive_con! tfp0, full disk mounts with our own block device driver, most of the iOS services running, ssh and a textual framebuffer. #offensivecon pic.twitter.com/xfEaCdgraH
|
||
|
||
| Aleph Research proslijedio/la je tweet | ||
|
Vera Mens
@V3rochka
|
15. sij |
|
Ghidra Script that sets the names for missing function names by looking for relevant patterns in the binary!
Hope that will help you too :)
github.com/alephsecurity/… pic.twitter.com/YmgTMhLJXR
|
||
|
|
||
|
|
Aleph Research
@alephsecurity
|
14. sij |
|
Ruckus vulnerability research by @waveburst is now online, several critical vulnerabilities found. Check it out: alephsecurity.com/2020/01/14/ruc…
|
||
|
|
||
|
|
Aleph Research
@alephsecurity
|
29. pro |
|
Phishing is anyone's problem, but now it can get you in ways you didn't expect and for many users, no proper mitigation is currently available. Check it out: alephsecurity.com/2019/12/29/rev…
|
||
|
|
||
| Aleph Research proslijedio/la je tweet | ||
|
Gal Zror
@waveburst
|
23. pro |
|
I am excited to present my vulnerability research this Saturday at #36C3! I will show three different RCEs that I discovered on Ruckus Wireless access points. I hope #BHEU check for updates often :) pic.twitter.com/BEfZpofJjn
|
||
|
|
||
| Aleph Research proslijedio/la je tweet | ||
|
offensivecon
@offensive_con
|
9. pro |
|
Simplifying iOS Research: Booting the iOS Kernel to an Interactive Bash Shell on QEMU by @JonathanAfek offensivecon.org/speakers/2020/…
|
||
|
|
||
| Aleph Research proslijedio/la je tweet | ||
|
|
jonathan Afek
@JonathanAfek
|
4. pro |
|
It was an honor to present our research at #BHEU. Thanks everyone for attending. It was a pleasure to see the interest of the community and we promise to keep the progress going. For everyone who missed the talk: alephsecurity.com/2019/06/25/xnu… pic.twitter.com/r3UiYi5QMr
|
||
|
|
||
| Aleph Research proslijedio/la je tweet | ||
|
Niemand 🇦🇷
@niemand_sec
|
4. pro |
|
Booting the iOS Kernel to an Interactive Bash Shell on QEMU at #BHEU by @jonathanAfek pic.twitter.com/2vcDpbbGXD
|
||
|
|
||
| Aleph Research proslijedio/la je tweet | ||
|
Dominic White
@singe
|
4. pro |
|
The effort @jonathanAfek went through to get iOS booting and running bash over serial in QEMU was pretty amazing. Grab it before “legal consequences” might accrue. Great work man. pic.twitter.com/Zh3VGdONex
|
||
|
|
||
| Aleph Research proslijedio/la je tweet | ||
|
|
jonathan Afek
@JonathanAfek
|
20. stu |
|
Presenting our research "iOS on QEMU" at #BHEU this December!
Will talk about the journey we went through to get an unpatched iOS kernel to boot on QEMU running an interactive bash shell with a full kernel debugger attached.
@alephsecurity @BlackHatEvents
|
||
|
|
||
|
|
Aleph Research
@alephsecurity
|
7. lis |
|
Thanks for the contribution, fixed :)
|
||
|
|
||
|
|
Aleph Research
@alephsecurity
|
2. ruj |
|
Found a cool & fast way to break (not only) weak PRNG algorithms. Check it out. alephsecurity.com/2019/09/02/Z3-…
|
||
|
|
||
|
|
Aleph Research
@alephsecurity
|
15. srp |
|
Part 3 of the series about Xiaomi is up! Live debugging of Jennic's arch on a cheap Chinese development board. alephsecurity.com/2019/07/15/xia…
|
||
|
|
||
|
|
Aleph Research
@alephsecurity
|
9. srp |
|
Researching obscure architectures sounds challenging to you? We thought so too, so we developed a disassembly and analysis plugin for #radare2 to make things easier! Read on to learn how we did it. alephsecurity.com/2019/07/09/xia…
|
||
|
|
||
|
|
Aleph Research
@alephsecurity
|
1. srp |
|
Ready for some strange architectures in IoT devices? Here's the first post in a series about Xiaomi's ZigBee-based Smart Plug. alephsecurity.com/2019/07/01/xia…
|
||
|
|
||
|
|
Aleph Research
@alephsecurity
|
25. lip |
|
bash on iOS on QEMU, the second post is here! Check out the research behind the published code. alephsecurity.com/2019/06/25/xnu…
|
||
|
|
||
|
|
Aleph Research
@alephsecurity
|
20. lip |
|
We are not focusing on that at the moment and plus it's encrypted and therefore harder to get the binary code.
|
||
|
|
||
|
|
Aleph Research
@alephsecurity
|
20. lip |
|
In addition a static trust cache is added to memory and to the device tree which you can't do on a read device among other changes. Indeed the kernel code itself is left unpatched.
|
||
|
|
||
|
|
Aleph Research
@alephsecurity
|
20. lip |
|
The ramdisk in the ipsw is modified to include a bash and a launchd item to execute it, which in a real device, you can't do and even if you could, iBoot probably verifies it.
|
||
|
|
||
|
|
Aleph Research
@alephsecurity
|
17. lip |
|
We hacked our way to executing an interactive bash shell on iOS on QEMU. We based the research on the work done by @zhuowei. Thanks! alephsecurity.com/2019/06/17/xnu…
|
||
|
|
||