Introduction In this article, I will explain how to run a compiled third-party Android app in a debugger like lldb on a non-rooted device. Prerequisites Install Android Studio and download the S...

Introduction Running Frida gadget on (jailed) iOS 18 can be suprisingly more difficult that expected. In this article, I am providing a full method to get Frida Gadget running on such a device. P...

Introduction In this article, we will learn how to compile radare2 for armhf using Buildroot’s toolchain (note that this can be adapted to any other cross-toolchain you have, either you got it from...

Introduction When using the default Buildroot target qemu_arm_versatile, no display is enabled: That’s sad and disappointing In this tutorial, we will learn how to get the kernel to recognize ...

Introduction Everyone with a jailbroken has probably already themed their iPhone, right ? Well, actually, you don’t even need to be jailbroken to enjoy alternative icons on iOS, but theming has bee...

Introduction In this post, you’ll learn how to perform a verbose restore on a 64 bits iPhone using checkm8. While this should work on 32 bits devices too, I didn’t have time to try it out yet. I...

Hopper is a very useful disassembler for Mac/Linux and I use it all the time when I need to reverse a binary. The problem is that it costs a whole 99€ to get a license and be able to export a patch...

Introduction In the previous article, we discussed how to patch an executable to redirect execution flow. The problem is that if you try to run this on your Mac right after patching, the system wil...