Website of Abdullah F. Joseph

Security specialist & consultant

Write-ups

• Certificate Pinning for your Average Joe
• ASM Primer - Part 1
• ASM Primer - Part 2
• SANS FOR610 Review
• PDF Malware Analysis
• C++ STL Management in Android NDK
• SANS SEC575 Review
• Sectalks BER0x03 CTF Write-up
• brbbot.exe Windows Malware Analysis
• Sectalks BER0x02 CTF Write-up
• Review of samsclass.info and CNIT 127
• Remote Man-in-the-Middle with Bettercap and Mitmproxy
• Write-up of CNIT 124 p19x
• Write-up of PicoCTF 2018 (ongoing)
• On Frida & Code Instrumentation
• VikingHorde Android Malware Analysis
• OpenMe Windows Malware Analysis

Book Summaries

• On Ideologies
• The Modern Personality Market
• The Death of Ivan Illich
• The Sacred and The Profane
• Lucifer: The Devil in the Middle Ages
• On Human Nature
• Serious Cryptography
• Righteous Victims
• Four Archetypes
• The Quest for a Moral Compass

Talks

• DefCamp 2018: Introduction to Reversing Malware
• DefCamp 2018: Stealing Traffic: Analyzing a Mobile Fraud Operation
• BSides Ljubljana 0x7E3: Reversing Mobile Malware
• RuhrSec 2019: Reversing Fraudulent Apps
• HITB Amsterdam 2019: Reversing Mobile Malware
• Video
• samsclass.info CNIT 128 Spring 19 guest lecturer: Analysing VikingHorde
• Nanosec 2019: Code Execution Analysis in Mobile Apps
• BSides Ljubljana 0x7E4: Dangerous games, binary obfuscation and how not to shoot yourself in the foot while reversing ransomware (POSTPONED INDEFINITELY DUE TO COVID-19)
• Codemotion Amsterdam 2020: Dangerous games, binary obfuscation and how not to shoot yourself in the foot while reversing ransomware (POSTPONED INDEFINITELY DUE TO COVID-19)
• OWASP Berlin 20-03-31: Software Protection
• Android Security Symposium 2020: Semi-Interactive Simplification of Hardened Android Malware
  • Slides
  • Video
• R2Con 2020: Semi-Interactive Simplification of Hardened Android Malware (Not live yet)
  • Slides

Public Projects

• Decrypticon: A Java-layer Android Malware Simplifier
• RAKE.go: Golang port of Rapid Automatic Keyword Extraction Algorithm (RAKE)
• Mobsec toolbox: Collection of helpful Android malware analysis scripts
• RexLogger: Smali drop-in class for logging disassembled apps
• Stripper: ELF binary sections table remover
• Randomware: POC Linux Ransomware
• Nucleas Engine: POC D3D10 Game Engine
• ProceduralDungeon: Two methods to generate truly-random dungeons in Unity3D

Online Courses

• iOS Development for Android Devs
• React Native for Mobile Devs

Contact

• LinkedIn
• GitHub
• Twitter