How Android banking Trojan (Anubis) behaves on real infected device

This particular Anubis was successfully distributed for almost a month via fake covid19 map website as fake map. The same way how I demonstrated in the video, were successfully infected…

Whenever I do pentesting, I always look backend because the development experience helps me alot in Pentesting. I can understand the…

There appears to be a new character-linked bug in Messages, Mail, and other apps that can cause the iPhone, iPad, Mac, and Apple Watch to crash when...

🍹A static injector of dynamic library for application (android, iphoneos, macOS, windows, linux) - hack0z/luject

Live stream of teaching Part 1 of the Android App Reverse Engineering workshop on 24 April 2020 by Maddie Stone (@maddiestone). Workshop is available at https://maddiestone.github.io/AndroidAppRE

Donation Link for SF-Marin Foodbank: https://us-p2p.netdo…

Research by: Ohad Mana, Aviran Hazum, Bogdan Melnykov, Liav Kuperman Overview Ransomware attacks have been a part of the security landscape for a long time. We are familiar with infamous malware such as CryptoLocker, WannaCry and Ryuk, all of which have caused…

In July 2019, a sophisticated backdoor trojan in Google Play was reported. We conducted an inquiry of our own, discovering a long-term campaign, which we dubbed “PhantomLance”.

Hooking C/C++ code in Android application using Frida with introduction and explainations in every step - noob friendly

Research by: Aviran Hazum, Bogdan Melnykov, Chana Efrati, Danil Golubenko, Israel Wernik, Liav Kuperman, Ohad Mana Overview: Check Point researchers discovered a new Cerberus variant which is targeting a multinational conglomerate, and is distributed by the…

The Cybereason Nocturnus team is investigating EventBot, a new type of Android mobile malware. EventBot abuses accessibility features to steal user data from financial applications, read user SMS messages, and steal SMS messages to allow the malware to bypass…

This is a special post because I fully based on another researcher, s1guza’s 0day. All of this story began from the following tweet:
Siguza told us that his 0day was patched in the iOS 13.5 beta3. So this is actually a sandbox escape 0day for the newest,…

Popular Android malware seen in 2020. Contribute to sk3ptre/AndroidMalware_2020 development by creating an account on GitHub.

Xiaomi is collecting users’ browser habits and phone usage, raising red flags for privacy researchers.

A framework for automated extraction of static and dynamic features from Android applications - alexMyG/AndroPyTool

Chapter 1: Down the rabbit hole


To start this journey I'll cover some backstory on the Flutter stack and how it works.

What you probably already know: Flutter was built from the ground up with its own render pipeline and widget library, allowing it to…

List of the most popular COVID10 mobile applications and the permissions they request. - GitHub - ivRodriguezCA/Covid19-Mobile-Apps: List of the most popular COVID10 mobile applications and the per...

(WIP) Runtime Application Instruments for iOS. Previously Passionfruit - ChiChou/grapefruit