Lior Keshet

We broke commercial root detection in Android apps 🔓📲 We targeted sensitive apps - finance, security, government - which use commercial protections. We got them running on rooted devices. That gave us full control to modify app behavior however we wanted. 👇

3/ A second vulnerability

4/ Read the full post here - lucidbitlabs.com/posts/2026-01-…

1/ Our team at @LucidBitLabs recently audited a crypto wallet app. We found 2 impactful vulnerabilities 👇

@LucidBitLabs @k33p_R3AL

We audited a mobile crypto wallet and found impactful vulnerabilities. Check out the research here - lucidbitlabs.com/posts/2026-01-…

Incredible. Security researcher Liork (@LucidBitLabs) just earned $100,000 for their first ever report on Immunefi. Oh, and this report earned Liork some pretty big Hunt Points, too.

@nyamabites The module is custom for the specific apps we targeted, so it isn't generally useful. Due to legal concerns, we are not able to share it

@LiorKesh How can I get the module?

We broke commercial root detection in Android apps 🔓📲 We targeted sensitive apps - finance, security, government - which use commercial protections. We got them running on rooted devices. That gave us full control to modify app behavior however we wanted. 👇

Finally, we built a persistent module, and got the apps cleanly running on the rooted device across reboots, updates, reinstalls - no adb needed. Read the full writeup here - lucidbitlabs.com/blog/commercia…

We reverse-engineered the apps, bypassing anti research protections. We pinpointed critical 'decision points' in which the app determines whether its safe to run or not. By hooking these points, we got the apps running happily on rooted devices

DJI drone security analysis: reverse engineering communication, firmware extraction, and fuzzing for vulnerabilities. 𖥂🎮 ၊၊||၊ 💥 More details on: LinkedIn: linkedin.com/posts/dlaskov_… Substack: it4sec.substack.com/p/dji-drone-se…

At @LucidBitLabs, we broke commercial root detection in apps with top-tier app protections in place (RASP). Full write up - lucidbitlabs.com/blog/commercia…

Hacker tries to restore lost internet connection: reverse engineers the modem and hacks into ISP network. ☎️ 🌐🔬🔨 More details on: LinkedIn: linkedin.com/posts/dlaskov_… Substack: it4sec.substack.com/p/hacker-tries…

Our new blog post is live: blog.dfsec.com/ios/2025/05/30…

#OffensiveCon25 videos are now up! youtube.com/playlist?list=…

"DisARMing" code - an exploration into systems programming, #debugging & #reverseEngineering on #Linux/#Android/#Darwin and #Aarch64! 510+ pages #book in COLOR(!) NewDebuggingBook.com for details, because there's more to detail than the margins of a Twitter message can hold.

@Nethanella @ShaharTavor @malwrhunterteam @mobilesecurity_ @AndroidPolice Really cool find, nice work Shahar and Nati

New attack MO for #Android #Malware #Banker abusing #WebView to attack any #Bank with no special permission need 🤯 Amazing research by @ShaharTavor FYI @malwrhunterteam @mobilesecurity_ @AndroidPolice A View Into Web(View) Attacks in Android securityintelligence.com/posts/view-int…