DarthNull.org • About Ⓘ

Hello! I'm David Schuetz.
This is where I ramble about...stuff.

BSidesROC - A (not so quick) Primer on iOS Encryption

cryptographyiossecurity

Put away the tin-foil: The Apple unlock case is complicated enough

cryptographyiossecurity

Mobile App Authentication using TouchID and Tidas

cryptographyiosmobilesecurity

ShmooCon - My Hash Is My Passport: Understanding Web and Mobile Authentication

security

DLP Considered Harmful - A Rant about Reliable Certificate Pinning

pkirantsecurity

Thoughts on CyberUL and Infosec Research

security

Salt as a Service: Interesting approach to hashing passwords

cryptographypasswordssecurity

Nails in the Crypt - White Paper

cryptographysecurity

Lenovo, CA Certs, and Trust

pkisecurity

ShmooCon - Knock Knock: A Survey of iOS Authentication Methods

iossecurity

Bypassing the lockout delay on iOS devices

iossecurity

What’s the deal with keyless entry car thefts?

securityspeculation

MCX - a lousy substitute for proven technology

privacysecurity

iPhone SMS forwarding — cool, but may be risky

iossecurity

Rebutting FUD and privacy issues surrounding Yosemite Spotlight

iosprivacysecurity

NoVA Hackers - iOS Cryptography Slides

cryptographyiossecurity

Even more posts about iOS encryption

iossecurity

A (not so) quick primer on iOS encryption

cryptographyiossecurity

Stealing user events from foreground apps on Android

security

BSLV 2014 - Breaking PRNGs

security

Duo Security Bypasses PayPal 2FA for Mobile Apps

security

More Mobile Malware Melodrama

androidsecurity

iOS Malware - Still FUDish, not quite a Real Problem (yet)

iossecurity

Apple ID Compromise and Device Lockout

iossecurity

Inadvertent OS X Mail Loading of Images in SPAM

bugosxsecurity

Referrer considered harmful: Leaking location of obscurely shared docs

security

Sanitize your outputs: Apple ID Password Logfile Disclosure

appletvbugsiospasswordssecurity

CVE-2014-1279 - Password Disclosure via Apple TV Touch Setup

iossecurity

iOS 7 and Mavericks: New feature roundup from a security perspective

iosmobilesecurity

Apple, Forensics, Law Enforcement, and FUD

blabberingcryptographyiossecurity

iOS Configuration Profile Ransomware

iosmobilephishingsecurity

Evading evasi0n: iOS 6 Jailbreak Prevention

iosmdmmobilesecurity

Tracking Down the UDID Breach Source

breachiosmobileprivacysecurity

Apple’s iOS Security Overview

iosmobilesecurity

Quick Look at Apple Configurator

iosmdmmobilesecurity

Changes to Apple MDM for iOS 5.x

conferencesiosmdmmobilesecurity

ShmooCon 2012 - Apple MDM Slides

iossecurity

iOS MDM Command Reference

iossecurity

Finding Which Root CAs You Actually Use

pkisecuritytools

BlackHat 2011 - Apple MDM Slides

iossecurity

BlackHat 2011 - Apple MDM Paper

iossecurity

Inside Apple’s MDM Black Box — Black Hat USA 2011

conferencesiosmdmmobilesecurity

Great Googly Moogly! I’m speaking at Black Hat!

conferencesiossecurity

Analysis of iOS Location Data from Multiple Devices

iossecurity

Simple Bypass of Safari Restrictions on iOS

bugsiossecurity

Bypassing MDM Restrictions for Mobile Safari on iOS 4.2

iosmdmmobilesecurity

Half-Baked Idea: Isolate Browser Security Contexts to Limit XSS Attacks

crazy-ideassecurity