Posts

Gotta Catch 'Em All: Frida & jailbreak detection

This blog post analyzes the Frida and Jailbreak detection in PokemonGO for iOS.
Romain Thomas
Jul 18, 2021 14 min read iOS, Reverse Engineering
Gotta Catch 'Em All: Frida & jailbreak detection

r2-pay: whitebox (part 2)

This second blog post explains how to recover the whitebox’s key from the obfuscated library libnative-lib.so
Romain Thomas
Sep 27, 2020 8 min read Android, Reverse Engineering
r2-pay: whitebox (part 2)

r2-pay: anti-debug, anti-root & anti-frida (part 1)

This first blog post describes the protections in the challenge r2-pay.
Romain Thomas
Sep 20, 2020 14 min read Android, Reverse Engineering
r2-pay: anti-debug, anti-root & anti-frida (part 1)

A Glimpse Into Tencent's Legu Packer

Analysis of Tencent Legu: a packer for Android applications.
Romain Thomas
Nov 26, 2019 5 min read Android, Reverse Engineering
A Glimpse Into Tencent's Legu Packer

Android Native Library Analysis with QBDI

This blog post deals with QBDI and how it can be used to reverse an Android JNI library
Romain Thomas
Jun 3, 2019 14 min read Android, Reverse Engineering
Android Native Library Analysis with QBDI

Android crackme challenge

Android crackme that uses system’s internals
Romain Thomas
Nov 20, 2018 1 min read Android, Challenge
Android crackme challenge

Android OAT formats

Internal structures of OAT format
Romain Thomas
Jun 25, 2018 1 min read Android
Android OAT formats

Android VDEX formats

Internal structures of VDEX format
Romain Thomas
Jun 25, 2018 1 min read Android
Android VDEX formats

When SideChannelMarvels meet LIEF

On how we used LIEF to lift an Android x86-64 library to Linux to perform our usual white-box attacks on it.
Philippe Teuwen, Romain Thomas
May 3, 2018 0 min read LIEF, Reverse Engineering
When SideChannelMarvels meet LIEF

How to use frida on a non-rooted device

This post explains how to use Frida gadget on a non-rooted device.
Romain Thomas
Mar 3, 2018 1 min read LIEF, Android
How to use frida on a non-rooted device