URL obfuscation has been around for awhile. In a nutshell, it’s simply concatenating IP octets into hex and then turning it into a decimal number. The result is a URL similar to: http://1249717651/ As you see, there is no real way to know whether your on the Official Google web page or if the site [...]

Recently I started playing with password security applications in the Android market that claimed ‘reliable’ from the authors. I decided to focus on the applications that had 4 or more stars and a lot of downloads. Since these types of applications store sensitive data, I wanted to see how hard it was to obtain this [...]

Lately I have been spending a lot of time either tearing into high-profile hacking incidents (Advanced Persistent Threats) or dissecting mobile security. I just decided to start blogging about my findings. In no way do I claim to be highly skilled in reverse engineering or analyzing security breaches but I do have something to say [...]