Blog Post

This blog post introduces iCDump, an new Objective-C class dump based on LLVM

This blog post introduces open-obfuscator, a new open-source project to obfuscate mobile applications.

This second blog post deals with native code obfuscation and RASP syscall interception

This first blog post introduces the RASP checks used in SingPass

This series of blog posts details how obfuscators can protect iOS applications from reverse engineering

This blog post is about the internal mechanisms of PGSharp, a cheat engine for PokemonGO.

This blog post analyzes the Frida and Jailbreak detection in PokemonGO for iOS.

This second blog post explains how to recover the whitebox’s key from the obfuscated library libnative-lib.so

This first blog post describes the protections in the challenge r2-pay.

Analysis of Tencent Legu: a packer for Android applications.

This blog post deals with QBDI and how it can be used to reverse an Android JNI library

Android crackme that uses system’s internals

Internal structures of OAT format

Internal structures of VDEX format

On how we used LIEF to lift an Android x86_64 library to Linux to perform our usual white-box attacks on it.

This post explains how to use Frida gadget on a non-rooted device.

This blog post introduces new features of LIEF as well as some uses cases.

We are open-sourcing LIEF, a library to parse and manipulate ELF, PE and Mach-O binary formats. This blog post explains the purpose of this project and some parts of its architecture.

Write-up for the Crypto 300 challenge

Write up

This blog post introduces code coverage with Triton