FatalSec
124 posts

FatalSec
@SecFatal
Technology enthusiast and mobile security researcher experienced in pentesting of mobile apps. Reach out at [email protected] for technical consultation.
Katılım Ekim 2022
109 Takip Edilen581 Takipçiler
FatalSec retweetledi

Introducing usbliter8
An A12/A13 SecureROM exploit
A novel iPhone BootROM vulnerability discovered and exploited by our team. It covers the underlying bug, the associated exploitation techniques, and the post-exploitation steps required to achieve application processor's boot-chain compromise.
The exploit leverages both a hardware bug in the USB controller and a specific configuration flaw present in the device firmware.
ps.tc/pages/blog-usb…
poc:
github.com/prdgmshift/usb…

English
FatalSec retweetledi

GitHub - lautarovculic/ioscpy: A macOS CLI that mirrors and controls a jailbroken iPhone over USB. github.com/lautarovculic/…
English

iOS apps often detect manual proxies with CFNetworkCopySystemProxySettings and block Burp Suite traffic.
In this video, we bypass this protection in the @8kSec iOS Challenge 5 (ClearRoute).
Watch the walkthrough:
youtu.be/PZnt3jJhlqo
@mobilesecurity_ @androidmalware2

YouTube
English

Join the FatalSec community. We have created this new space to continue sharing content, research, tooling, and discussions around reverse engineering, mobile security, pentesting, and low-level internals.
Stay active, share knowledge, and keep learning.
t.me/+eb4DfS4aXuZlM…
English

Hey folks!
I've been getting a lot of DMs for guidance, so decided to take action on it.
I'm excited to help folks out and give back to the community via Topmate. Don't hesitate to reach out if you have any questions or just want to say hi!
topmate.click/klvge

English

Ever injected a Frida script just to watch the app instantly crash?
Modern RASP actively hunts your hooks. In this video, we build a memory trap, catch the scanner, and deploy a live ARM64 patch to completely blind it.
Watch the teardown: youtu.be/yipcDMRHBG4

YouTube
English

Standard inline hooks triggering Android RASP?
In this video we use Renef to hook imported functions via PLT/GOT manipulation, leaving function prologues untouched to evade memory detections.
Watch here:
youtu.be/ssqe9PEqTYI
@Nethella @androidmalware2

YouTube
English
FatalSec retweetledi

Syscall Tracer🔥🔥
Sometimes it’s useful to observe the system calls happening inside a given target process. Especially if the target includes some kind of Frida detection, root detection, or any other kind of Runtime Application Self-Protection (RASP).
frida.re/news/2026/03/0…

English

#AndroidSecurity #RASP #ReverseEngineering
Frida blocked by advanced RASP?
New Video of "Defeating Modern RASP" is live on FatalSec!
Watch us bypass GarudaDefender using the Renef framework, stealthy process injection, and Lua Java hooks.
Watch Here: youtu.be/zAQ1iYnpUQg

YouTube
English
FatalSec retweetledi

FatalSec retweetledi

I took time to wrap up some notes about PAC and play with it!
blog.reversesociety.co/blog/2026/poin…

English
FatalSec retweetledi

"Dr. Bytecode or: How I Learned to Stop Worrying and Obfuscate Java"
A tale about how @farenain started his journey in Java software obfuscation.
blog.quarkslab.com/how-to-write-y…

English

Cracked @8kSec Challenge 3 by digging deep into Swift memory layouts and spoofing GPS location.
We analyze struct offsets, decode metadata, and use Frida to teleport past the location anti-cheat.
Watch here: youtu.be/8bF6YZLC6Sw

YouTube
English

@HeWhomCodes Yeah I read the description but I thought that it’s would be bare minimum implementation just required to boot up the iOS. But if it’s a full fledged Secure Enclave emulation then it’s awesome.
Can’t wait to test it.
English

@SecFatal Whoops, auto-correct. I mean Secure Enclave. And we emulated the Secure Storage Component inside it as well.
English

surprise! got iOS 18.5 booting up to SpringBoard in my Apple Silicon emulator, Inferno, no proprietary components. it's the first ever open source emulator to run iOS 18. however not very stable due to memory corruption, we are working to resolve it, then it will go public. will be a big win for the OSS and iOS security research community.
English
FatalSec retweetledi

🚨 REcon 2026 is LIVE!
🚀 Call for papers and registration are now open!
Join the world's top reverse engineers & exploit devs in Montreal:
🛠 Trainings: June 15-18 (19 hands-on classes – AI agents, kernel exploits, Rust/Go reversing, fault injection & more!)
📅 Conference: June 19-21
Tickets & early bird now open → recon.cx
Shoutout to the legends teaching: @SinSinology @KyleMartin @MalachiJonesPhD @andreyknvl @mr_phrazer @yarden_shafir @DrCh40s @pulsoid
+ more elite instructors! See website for all trainers and session info.
Limited spots – see you in MTL! #REcon2026 #ReverseEngineering
English





