Latest Articles
Deobfuscating Android ARM64 strings with Ghidra: Emulating, Patching, and Automating
In a recent engagement I had to deal with some custom encrypted strings inside an Android ARM64 app. I had…
Unpacking Flutter hives
Intro When analyzing the security of mobile applications, it's important to verify that all data is stored securely (See OWASP…
Intercepting traffic on Android with Mainline and Conscrypt
TL;DR: The AlwaysTrustUserCerts module now supports Android 7 until Android 16 Beta. If you want to learn more about Mainline,…
Patching Android ARM64 library initializers for easy Frida instrumentation and debugging
Intro During both mobile security and mobile resiliency assessments, you often end up instrumenting the application to analyze its internals.…
Solving Flaggy Bird (Google CTF 2019)
A few weekends ago we participated in the Google CTF. While we didn't make it to the top 10, we…
Circumventing SSL Pinning in obfuscated apps with OkHttp
TL;DR - There are many Android SSL pinning bypass scripts available for Frida. However, those don't always work on obfuscated…
Intercepting Belgian eID (PKCS#11) traffic with Burp Suite on OS X / Kali / Windows
TL;DR: You can configure Burp to use your PKCS#11 (or Belgian eID) card to set up client-authenticated SSL sessions, which…
NVISO at DEF CON 25
Staying up to date with the latest hot topics in Security is a requirement for any Security Consultant. Going to…
MoveBot: Battling inactivity one micro-exercise at a time
Many of our NVISO colleagues are very active during their free time. We have colleagues who go mountain-biking, rock climbing, swimming, running,…
CSCBE Challenge Write-up – Trace Me
This is the first post in a series of write-ups on some of the challenges that were tackled by students…