iOS 5 data protection updates
iOS 5 was released this week, and introduced some changes to the data protection features we described at HITB Amsterdam. This post highlights the updates made since iOS 4.
LwVM partition scheme
The GPT partition table used on iOS 4 was replaced by Apple's proprietary Lightweight Volume Manager (LwVM ...
Hack.lu CTF 2011 Write-up : Scotty's last signal
Another writeup for the excellent Hack.lu 2011 Capture The Flag contest. This one was very unusual, based on a patched NES rom of Super Mario Bros 1.
Scotty's last signal You might have heard about Montgomery Scott, the legendary chief engineer of the U.S.S. Enterprise. What ...read more
Hack.lu CTF 2011 Write-up : FluxScience
This was probably one of the most entertaining challenges of this CTF.A file data.flux is provided. The goal is to analyze a Windows binary to be ableto decrypt this file.
A few informations are given:
Thanks to a former employee of FluxScience (one of our competitors), wemanaged to ...read more
Hack.lu CTF 2011 Write-up : Romulan Business Network
Once again, we participated in the Capture-The-Flag event organized by the FluxFingers team at Hack.lu. Just like last year's CTF, the challenges were fun and original, and we finished up first after 48 hours of rude competition. The challenge here consisted in a little PDF crackme to solve ...read more
The undocumented password validation algorithm of Adobe Reader X
Rushing Recon 2011!!!
Analysis of the jailbreakme v3 font exploit
Two weeks ago, comex released the third version of jailbreakme. Two exploits are used to jailbreak Apple devices by opening a PDF file in the MobileSafari browser: initial code execution is obtained through a vulnerability in the Freetype Type 1 font parser, allowing subsequent exploitation of a kernel vulnerability to ...read more
Linux syscall ABI
A quick post to summarize the linux kernel syscall ABI on i386 architecture.
It is hard to come by a short summary of how to do direct syscalls under the linux kernel. This does not intend to be exhaustive nor authoritative, but at least now I'll have something to ...read more
Origami 1.0 released!
I am pleased to announce the first stable release of Origami, the PDF manipulation framework! A lot of new cool features has been added since the last beta and I consider the framework has become stable enough now. This release introduces the support for AES256 encryption/decryption, partial support for ...read more
Passcode bypass of the HTC Desire Z using an unexpected feature of the bootloader
Android devices are becoming increasingly present everywhere. iPhone security has been analyzed by researchers -- however this is more difficult for Android devices due to the diversity of vendors and devices: each model has its own characteristics and has a unique combination of hardware and software. What will be discussed here ...read more