1. How to root the LG Watch Urbane ( B285 )

    A few days ago I've bought a LG Watch Urbane from the Google Store since it seemed to me the very first "elegant" wear device. I really like old fashioned wrist watches so I waited for something similar to be on the market before getting a Wear device. Unfortunately, being…

    on android LG Watch Urbane root android wear wear TWRP SuperSU su LG G Watch R XDA

  2. Introducing FIDO, a Minimalistic, IDE-agnostic C/C++ Project Generator.

    I don't know you, but I always find myself performing the same kind of stuff over and over again dozens of times per month, such as: Create project folder. Create src and include folders. Fill them with a basic main.c(pp) Create the Makefile, fill tue rules. What about…

    on c c++ fido project generator project generator template

  3. Android Native API Hooking with Library Injection and ELF Introspection.

    This post can be considered both the part 2 of the previous "Dynamically inject a shared library into a running process on Android/ARM" and a proof of concept of the same, namely what can be done with library injection on Android. TL;DR I've updated the source code of…

    on hooking api hooking library android injection elf relocation arm elf open dalvik plt relocation relocation table symtab strtab

  4. Using ARM Inline Assembly and Naked Functions to fool Disassemblers

    On this post I want to share a simple trick I learned a while ago, it's nothing special but if you think about it, it's quite nice :) Sometimes we want to obfuscate/hide strings in our program to make reversing more difficult and the more common approach is to encrypt…

    on hack ida arm assembly naked functions inline inline assembly disassembler hopper objdump trick

  5. Dynamically inject a shared library into a running process on Android/ARM

    If you're familiar with Windows runtime code injection you probably know the great API CreateRemoteThread which lets us force an arbitrary running process to call LoadLibrary and load a DLL into its address space, this technique called DLL Injection is often used to perform user space API hooking, you can…

    on hooking api hooking library android injection ptrace remote injection library injection arm elf registers

  6. Fuzzing with AFL-Fuzz, a Practical Example ( AFL vs binutils )

    It's been a few weeks I've been playing with afl-fuzz ( american fuzzy lop ), a great tool from lcamtuf which uses binary instrumentation to create edge-cases for a given software, the description on the website is: American fuzzy lop is a security-oriented fuzzer that employs a novel type of compile-time instrumentation…

    on exploit afl fuzzing lcamtuf fuzzer binary instrumentation gcc clang qemu llvm crash american fuzzy lop