@cryptax – Medium

@cryptax

Creating inefficient IT, or hiding our own inefficiency behind IT

We, humans, normally have brains, and a heart, and we should use them more.

Oct 16

Oct 16

The Next Generation Conference Format

I have now been attending conference for … hum … several decades and I believe the traditional format of 30, 40 or 50-minute talks should…

Oct 4

Oct 4

Arguments descriptor arrays in Dart

While reading Dart assembly, you may have noticed lines such as the following:

Sep 19

Sep 19

Using AI-assisted decompilation of Radare2

A few months ago, Radare2 (aka r2), an open source disassembler which can be entirely used by command line, started implementing AI plugins…

Sep 17

Using AI-assisted decompilation of Radare2

Sep 17

Dart shifts to standard calling convention

Up until Dart SDK v3.4.0, Dart was using an uncommon calling convention where all arguments for a function were passed on the stack [see my…

Jul 19

Dart shifts to standard calling convention

Jul 19

Untangling Android/TangleBot

We dig in a malicious sample of Android/TangleBot of May 2024. TangleBot is also reported as a BankBot, although it is more an Android RAT…

Jul 12

Untangling Android/TangleBot

Jul 12

On the security of Google Secrets

Google Secrets Gradle plugin is “for providing your secrets securely to your Android project”. I would like to make it clear in this…

Jul 11

On the security of Google Secrets

Jul 11

Inside Sinchat Flutter riskware

In this blog post, we analyze 2 borderline Flutter apps. As I’ll explain in conclusion, they are not malicious but expose borderline/risky…

May 24

Inside Sinchat Flutter riskware

May 24

Testing Restricted Settings of Android 13 on an emulator

Android 13 introduced a new security measure called “Restricted Settings”. The measure is meant to limit access to notification settings…

Apr 4

Testing Restricted Settings of Android 13 on an emulator

Apr 4

Phishing attempt on French e-tolls

Yesterday, I received a well-crafted phishing attempt email targeting users of a French e-toll company. While this email contains no mobile…

Mar 21

Phishing attempt on French e-tolls

Mar 21

@cryptax

@cryptax

Mobile and IoT malware researcher. The postings on this account are solely my own opinion and do not represent my employer.

Following

Help
Status
About
Careers
Press
Blog
Privacy
Terms
Text to speech
Teams