Unrestrict the restricted mode for USB on iPhone. A first analysis @citizenlab #CVE-2025-24200 👉 blog.quarkslab.com/first-analysis…
quarkslab
1,695 posts
quarkslab
@quarkslab
- Oops, they did it again! The Titan-M chip is the root of all security in Google's Pixel phones @DamianoMelotti & @max_r_b will talk about their journey from Reversing & Fuzzing to Code Execution & leaking its encryption keys tomorrow at @WEareTROOPERS troopers.de/troopers22/age…
- Did you know that Windows processes fundamental to Operating System security run in Isolated User Mode and can not be debugged ? Well that's true except when it isn't. Here @fdfalcon provides a step by step guide to do it blog.quarkslab.com/debugging-wind… #Windows #ReverseEngineering
- Is remote code execution in UEFI firmware possible? Yes it is. Meet #PixieFAIL: 9 vulnerabilities in the IPv6 stack of EDK II, the open source UEFI implementation used by billions of computers. Full details by @fdfalcon and @4Dgifts in our new blog post: blog.quarkslab.com/pixiefail-nine…
- A Starlink User Terminal is a dish best served reversed and that is exactly what @magocarlos1999 did for the past 6 months. Here he shares his journey and the tools he built during his internship at Quarkslab. Dive deep into Starlink's UT firmware! blog.quarkslab.com/starlink.html
- Finding and chaining 4 vulns to exfiltrate encryption keys from the Android Keystore on Samsung series A* devices. Did you miss the "Attacking the Samsung Galaxy A* Boot Chain" talk by @max_r_b and Raphaël Neveu earlier this year ? Talk && PoC || GTFO: blog.quarkslab.com/attacking-the-…
- [BLOG] Reverse-engineering Broadcom wireless chipsets by @Phenol__ blog.quarkslab.com/reverse-engine… The long and good trip of an intern, then the long and sad disclosure timeline of 5 vulnerabilities. Thx to @Broadcom we dont know what is vulnerable...
- We are constantly being asked about so-called "secure messaging apps". Here is a quick overview
- Fuchsia is Google's new open source OS with a focus on security and privacy. A Quarkslab researcher took a look and found several vulnerabilities. They are now fixed. Curious about the technical details ? Find them in our new blog post: blog.quarkslab.com/playing-around…
- Good tools are made of bugs: How to monitor your Steam Deck with one byte. Finding and exploiting two vulnerabilities in AMD's UEFI firmware for fun and gaming . A Christmas gift in February, brought to you by the amazing @pwissenlit 🫶 blog.quarkslab.com/being-overlord…
- Glad to publish the technical audit report of our experts (involving @RobinDavid1) on the MimbleWimble #MWEB integration in Litecoin #LTC. Many thanks to @LitecoinProject & @DavidBurkett38 for making this assessment possible! blog.quarkslab.com/audit-of-the-m…
- Today is a big day, especially for @JonathanSalwan: he will defend his PhD: symbolic execution for binary deobfuscation. The team is super proud of the long road he walked!
- [BLOG] Modern iOS Jailbreaks' Post-Exploitation blog.quarkslab.com/modern-jailbre… What is exactly a jailbreak, how it works and the match LiberiOS vs Electra.
- 👏Our researchers @DamianoMelotti @max_r_b @doegox just finished their talk about reversing Google's Titan-M chip. Partial chip pinout, Ghidra loader, an open source API client, a fuzzer, 1st ever code exec exploit, slides & white paper now available here
