• H1-212 2017: Writeup

    Hackerone is hosting an event in New York this december and ran a CTF as a secondary way to get an invite to the event. I visited the H1-702 event in Las Vegas this summer and it was really fun so of course I had to give this a shot as well. The following information was given on the CTF page.

    Read more
  • SEC-T 2017 Talk: Unauthenticated encryption in the wild

    Earlier this fall at SEC-T 2017 I gave a talk about unauthenticated cryptography. The recording of the talk is available online at the SEC-T YouTube channel.

    Read more
  • Security Fest 2017 Talk: Reversing with determination

    Earlier this summer at Security Fest 2017 I gave a talk about reverse engineering. The recording of the talk is available online at the Security Fest YouTube channel.

    Read more
  • H1-702 2017: Writeups

    The last few weeks Hackerone have been hosting a mobile CTF as a qualifier for their Las Vegas H1-702 event. The goal was to reverse engineer a handful of Android and iOS mobile applications and get the flags. To qualifiy for the main event you had to, apart from solving the levels, submit writeups of how you did it. These are the writeups I submitted for my solutions.

    Read more
  • Reversing malware USB drives in Gothenburg

    This Wednesday reports about USB-drives with malicious code being found in the area Lindholmen in Gothenburg, spread in Swedish media. It was reported by, among others, IDG, Expressen, SVT and even far-right sites such as Nordfront. This quickly spread in social media and all kinds of wild theories started to appear including industrial espionage and Russian hackers using "military-grade encryption". All of this, of course, without any kind of evidence to back it up. Being a strong opponent to the FUD that is very commonly spread in security related events I sought to dig deeper into this.

    Read more

subscribe via RSS