Quarkslab's blog
  • Archives

A small bug in the signature verification of AOSP OTA packages

Date Tue 08 April 2025 By Jérémy Jourdois Category Android Tags Android AOSP vulnerability OTA 2025

A signature verification bypass in a function that verifies the integrity of ZIP archives in the AOSP framework

more ...

Attacking the Samsung Galaxy A* Boot Chain

Date Tue 15 October 2024 By Maxime Rossi Bellom Raphaël Neveu Category Android Tags reverse-engineering exploitation vulnerability Android 2024

We discovered several vulnerabilities impacting the boot chain of several Samsung devices. Chained together, they allow us to execute code in the bootloader, get root access on Android with persistency, and finally leak anything from the Secure World's memory including the Android Keystore keys.

more ...

DJI - The ART of obfuscation

Date Tue 06 February 2024 By Eric Le Guevel Category Android Tags Android packer reverse-engineering 2024

Study of an Android runtime (ART) hijacking mechanism for bytecode injection through a step-by-step analysis of the packer used to protect the DJI Pilot Android application.

more ...

Android Data Encryption in depth

Date Mon 14 August 2023 By Maxime Rossi Bellom Damiano Melotti Category Android Tags reverse-engineering exploitation Android 2023

Join us in our journey into modern Android's Data Encryption at rest, in which we study how it works and assess how resistant it is against attackers having access to a range of high end software vulnerabilities.

more ...

Android greybox fuzzing with AFL++ Frida mode

Date Thu 27 April 2023 By Eric Le Guevel Category Android Tags Android fuzzing Frida 2023

This article is about greybox fuzzing of userland targets that can be encountered in Android using AFL++ and its Frida mode. We also discuss how to target JNI functions, to test the native features invoked by Java code.

more ...

Attacking Titan M with Only One Byte

Date Thu 11 August 2022 By Damiano Melotti Maxime Rossi Bellom Category Android Tags reverse-engineering fuzzing vulnerability exploitation Android 2022

Following our presentation at Black Hat USA, in this blog post we provide some details on CVE-2022-20233, the latest vulnerability we found on Titan M, and how we exploited it to obtain code execution on the chip.

more ...

Commit Level Vulnerability Dataset

Date Tue 26 April 2022 By Alexis Challande Category Android Tags vulnerability AOSP Android 2022

In this blog post, we present a new vulnerability dataset composed of thousands of vulnerabilities aimed at helping security practitioners to develop, test and enhance their tools. Unlike others, this dataset contains both the vulnerable and fixed states with source data.

more ...

Smali the Parseltongue Language

Date Thu 03 February 2022 By Benoît Forgette Category Android Tags Android binary patching programming 2022

When analyzing an Android application, we often end up playing with the Smali intermediate representation... Way more human readable than the binary DEX code itself, but still not that user friendly. This blog post gives some guidelines on how to read Smali, and start writing you own Smali code!

more ...

Extending Emuroot: support for Android 10 & 11

Date Thu 04 March 2021 By Eric Le Guevel Category Android Tags Android reverse-engineering 2021

A quick introduction to Android Emuroot, a Python script that allows to get root privileges on the fly on an Android Virtual Device (AVD). It explains the reverse engineering steps needed for the script to work with recent AVDs and provides a preview of specific Linux kernel structures in memory.

more ...

QBDI 0.8.0

Date Thu 11 February 2021 By instrumentation-team Category Programming Tags QBDI Android release programming 2021

This blog post introduces the release 0.8.0 of QBDI.

more ...

  • «
  • 1
  • 2
  • 3
  • 4
  • »
  • Quarkslab's Website

  • SOCIAL

    • twitter
    • mastodon
    • github
  • CATEGORIES

    • •Android
    • •Automotive
    • •Blockchain
    • •Challenge
    • •Containers
    • •Cryptography
    • •Exploitation
    • •File Formats
    • •Fuzzing
    • •Hardware
    • •Kernel Debugging
    • •Life at Quarkslab
    • •Math
    • •Pentest
    • •Program Analysis
    • •Programming
    • •Reverse-Engineering
    • •Software
    • •Vulnerability

© 2025 Quarkslab · Powered by pelican-bootstrap3, Pelican, Bootstrap

Back to top