Newest Questions

Ask Question
9,848 questions
Newest Active Bountied Unanswered
0 votes
0 answers
18 views

I'm trying to understand the format of the data sent over the LIN bus in a Volvo car. I read a few frames from register 00. One loop looks like this: 40 00 44 01 00 00 00 01 40 00 95 03 00 00 00 01 ...
hub's user avatar
  • 1
0 votes
0 answers
26 views

I am currently engaged in a deep reverse engineering challenge concerning the HPE SmartMemory authentication mechanism used in ProLiant Gen10 servers (specifically tested on a DL380 Gen10). The goal ...
Next Server's user avatar
  • 1
0 votes
0 answers
25 views

I am trying to dump a Macronix MX35LF1GE4AB NAND SPI flash chip. The way I do is via a custom pytohn script implemented upon: https://github.com/pc-magas/MX35LF1GE4AB_dump The core logic is to iterate ...
Dimitrios Desyllas's user avatar
  • 131
0 votes
2 answers
72 views

I'm working on a decompiler for a language for which I only have the bytecode. I have this graph (and several others with similar patterns) for which I can't seem to figure out the actual pseudo-code ...
DeepQuantum's user avatar
  • 103
0 votes
1 answer
31 views

I have two long files, both with encrypted data at the top, when diffing both files the only parameters that change are the parameter itself and the checksum (last 4 bytes of data). If i have a pair ...
VS VIPER's user avatar
  • 1
0 votes
0 answers
32 views

I'm trying to reverse engineer an old embedded system that has a NEC v40 on it, which is very similar to an 80186 (more like 80188) I guess. As a member of the x86 family, it has a separate I/O memory ...
andrejr's user avatar
  • 101
0 votes
1 answer
30 views

I have a Linux kernel that I open with Ghidra. There is a task_struct that I want to map all the fields. The problem is that os big struct (around 3000 bytes) and have lot of ifdef in the source code. ...
Polo1990's user avatar
  • 1
0 votes
0 answers
24 views

System Details (taken from details listed by UTM about the VM): - Windows 10 Home Edition Virtual Machine via UTM running on ARM MacBook Pro M4 - Emulates x86_64: Standard PC (Q35 + ICH9, 2009) (alias ...
Eshan Kelkar's user avatar
  • 1
0 votes
0 answers
77 views

I'm a beginner with Frida. When I first started using Frida, I encountered an error. Android version: 11 frida-server version: 17.0.7 └─$ pip list | grep frida frida 17.0.7 ...
ho1 tian's user avatar
  • 31
0 votes
0 answers
59 views

I am starring at a lot of assembly code for the Espressig ESP32 (Tensilica/Cadence Xtensa LX6 core) recently and I've been asking myself why I see a lot of functions which look like the following: ...
Matthias W.'s user avatar
  • 101
3 votes
0 answers
40 views

I am currently researching a facial recognition attendance system for Android. I would like to know how it stores the list of people who have attended. In my opinion, apart from sockets, the only way ...
ho1 tian's user avatar
  • 31
0 votes
0 answers
23 views

Has anyone managed to disable Frida's protection in mobile games? I'm not using an emulator, just a mobile phone. I need to get information at the beginning of the game as soon as it opens, because ...
CENTRAL's user avatar
  • 1
0 votes
0 answers
24 views

I've been working for a while on decoding libocos files from the company TianJi Information Technology Inc. I tried using ida Pro debugger and Frida, but they have blocking mechanisms. I tried using ...
CENTRAL's user avatar
  • 1
0 votes
1 answer
416 views

I am modifying and testing a very basic Windows executable made by me (using an old 32 bit gcc[MinGW] compiler and an up-to-date Windows 11), to start doing very basic reversing from a program ...
nostromo's user avatar
  • 133
0 votes
0 answers
33 views

(original png) It's a multi level challenge. While examining through zsteg I found 2 zlib compressed file and a binary executable. I have uncompressed one of the zlib which gave long hex string, which ...
Roshan Kumar's user avatar
  • 1

15 30 50 per page
1
2 3 4 5
657