Coapprentice
@co_apprentice
{ Privacy Enhancing Technologies | Cryptography | Smart cards | PoS | Online Payments | Car Keyfobs | android-boot | Python } security enthusiast
You might like
> Cellebrite does support, for example, Pixel 9 devices BFU. Meanwhile the screenshot indicates Cellebrite cannot unlock Pixel 9 devices running GrapheneOS BFU. 404media.co/someone-snuck-… Hi @GrapheneOS, what do you do more to harden screen lock authentication in Pixel?
Mechanical keys were never secure. But RFID electronic key is not secure either. Cars should not have a physical key at all. All modern cars should only have a cryptographically secure keyfob backed by Distance Bounding Protocol and a monotonic clock inside.
This app/tool assists an operator in creating a copy of a key without having the original one
Secure boot bypass on Samsung Galaxy A series. Secure boot chain is executed before Android Verified Boot verifies vbmeta. You can achieve root and can also flash custom images without unlocking the bootloader and it will still pass Play Integrity hardware backed attestation.
Better late than never! The slides of our talk "Attacking Samsung Galaxy A* Boot Chain" at @offensive_con can be found here: github.com/quarkslab/conf… The video is also available: youtube.com/watch?v=WJ7wkJ…
Still looking for those elusive data encryption keys on your Samsung A* series phone? Don't worry! Join security researchers @max_r_b and @DamianoMelotti today at 5pm at @offensive_con to learn how to break Secure Boot and tamper with your phone enough to get those pesky keys.
Also, it is funny when I see the channel pic
android.googlesource.com/platform/packa… are how keys are fetched for Widevine Provisioning 4.0 if anyone is interested.
Plans to literally "hack the planet" foiled due to 500ms of latency that Andres instinctually investigated. The latency was due how the malicious code parsed symbol tables in memory. openwall.com/lists/oss-secu…
Measured boot already exist in Android, in uh 14-launched SoC? But it doesn't allow using it for encryption, it's here only to enforce Google monopoly, just a more secure key attestation. Using it to derive an encryption key isn't done by google and they have no plan for it \
United States Trends
- 1. #FanCashDropPromotion 1,267 posts
- 2. Good Friday 54.4K posts
- 3. #FridayVibes 4,383 posts
- 4. Talus Labs 25.5K posts
- 5. #PETITCOUSSIN 12.8K posts
- 6. Publix 1,703 posts
- 7. #HONGJOONG_FASHION_SHOW 2,800 posts
- 8. #FridayFeeling 2,663 posts
- 9. Elise 9,503 posts
- 10. Happy Friyay 1,236 posts
- 11. RED Friday 3,918 posts
- 12. Tammy Faye 3,211 posts
- 13. Finally Friday 4,257 posts
- 14. Sydney Sweeney 103K posts
- 15. Kehlani 17.1K posts
- 16. John Wayne 1,624 posts
- 17. Blockchain 200K posts
- 18. Hochul 13.8K posts
- 19. Piggly Wiggly N/A
- 20. Out The Window 11.8K posts
You might like
-
Robert Xiao
@nneonneo -
Lennart Maschmeyer
@LenMaschmeyer -
Adrian Perrig
@Adrian_Perrig -
SAFARI Research Group
@SAFARI_ETH_CMU -
POC_Crew
@POC_Crew -
guyru
@guyru_ -
DIMVA Conference
@DIMVAConf -
ACNS
@acns_2003 -
[email protected]
@CodeColorist -
Tomi
@tomitokics -
Network Security Group ETH
@NetSec_ETH -
aSiagaming
@vngkv123 -
PQSecure
@pqsecure -
Davide Balzarotti
@balzarot -
Emad Omara @ 🏡
@Emad_Omara
Something went wrong.
Something went wrong.