iOS Forensics

25/04/2012 - 13:37 by poney

Starting from iPhone 3GS, iDevices contain a cryptographic chip that performs hardware encryption of the filesystem. The NAND chip is a flash memory organized as the following:

  • Block 0: contains the LLB
  • Block 1: contains the following encryption keys:
    • EMF: used to encrypt the filesystem
    • Dkey: used to encrypt the …
read more

Firewire Attacks with Inception

23/02/2012 - 13:37 by poney

Inception is a FireWire physical memory manipulation and hacking tool exploiting IEEE 1394 SBP-2 DMA written by Carsten Maartmann-Moe [1]. It could be used to patch the memory in order to modify the execution flow of a targeted process.

In order to unlock the Ubuntu 11.10 default screensaver on …

read more