liveoverflow Bot

liveoverflow OP Bot , vor 27 Tagen

@rebane2001 What are the demands? Disable by default? Better „protecting“ this data (whatever that means)? Simply less data? Or shouldn’t exist in the first place?

liveoverflow OP Bot , vor 27 Tagen

@looooouuuuuu @eligaultney It sounds sooooooo cool. Stupid hackers, that’s why we can’t have nice things 😭

liveoverflow OP Bot , vor 26 Tagen

@codehusky if someone's RAT'd your PC they can just record your shit anyway

liveoverflow Bot , vor 28 Tagen

@lorenzofb My theory is, too much publicity is not good for intelligence companies - adds too much public and political pressure. It’s also a small market, there is no need for this crazy public reach that Zerodium has

liveoverflow Bot , vor 28 Tagen

@albinowax Don’t report 🙅
Don’t accept their ToS ⛓️‍💥
Publish your own intellectual property freely 👍

liveoverflow Bot , vor 27 Tagen

@sw33tlie @albinowax I would never release a real critical. But tbh, the real-life risk for 99% of issues is very low...

I'm sitting on a boring Android app vulnerability and the company ignores my report via email. And I have absolutely zero ethical concern to publish that soon.

liveoverflow Bot , vor 27 Tagen

@agentrandom_ @albinowax well.... depends :P

https://bird.makeup/@liveoverflow/1798797321540653234

liveoverflow Bot , vor 27 Tagen

@agentrandom_ @albinowax I would argue that I'm very experienced in application security and can assess the impact and risk of issues really well, in order to say with confidence that no user is thrown under the metaphorical bus. It's definitely more risky for the user to take a real bus.

liveoverflow Bot , vor einem Monat

@bibekdhkl hahahha that's cool!
so tell us. How has life changed since then!?

liveoverflow Bot , vor einem Monat

@insiderphd If the company received an email eg. from the vendor or from a newsletter about the CVE, isn't this report technically a duplicate 🤔

liveoverflow Bot , vor einem Monat

@s1r1u5_

Sad Baby GIF

liveoverflow Bot , vor einem Monat

@nearbeteigeuze congrats! sounds like an awesome thesis!

liveoverflow OP Bot , vor einem Monat

prompt: Music for a night hacking and coding. genres: electronic, synthwave, ambient, orchestral, soundtrack, chiptune. minimal vocals.

liveoverflow OP Bot , vor einem Monat

@erarnitox I only know suno, never used udio

liveoverflow Bot , vor einem Monat

Not super useful input, but I literally just went through an adult diagnosis and can share how that went. There was a parent questionnaire about my childhood, school transcripts, a self-assessment and two 1on1 interviews. They basically just counted points based on my answers. And the whole thing left me a bit skeptical, a lot felt like interpreting a horoscope tbh.
Also there was a lot of focus on how much my "level of suffering" (Leidensdruck) is, which feels weird to me - if my environment is different and I don't "suffer" as much I don't have ADHD?
So no clue whether I have ADHD or not. But I did it because I want to try out medication under supervision to see whether I am able to take care of the things I struggle with more easily.

liveoverflow OP Bot , vor einem Monat

It's not just cable, it also affects emulator

liveoverflow OP Bot , vor einem Monat

@tilver yep same result. Emulator, WiFi, Cable. I see adb.exe crashing in the Windows event logs. But cannot find any reason for it. I saw multiple reports online of the same issue (in the past), but their solutions didn't work for me :(

liveoverflow OP Bot , vor einem Monat

@willbenem How would you set that up with Android Studio?

liveoverflow Bot , vor einem Monat

@0xlupin Have been wondering this myself too. So curious about the result.
What's the difference between responsible disclosure and VDP though?

liveoverflow Bot , vor einem Monat

@ghidraninja look what folders are big and rm -rf until VM breaks. then revert to that point!

liveoverflow OP Bot , vor einem Monat

Anybody have good resources about the service internals? How does the BinderProxy object work? Can I parcel the request by hand somehow?

I also tried to define an AIDL, though the target app doesn't use it. And so it just didn't do anything when I tried to call the methods.

liveoverflow OP Bot , vor einem Monat

I'm still 80% confident that defining my own AIDL should work. The generated stub does call mRemote.transact() and eg. the writeInterfaceToken() descriptor looks all good. Is it maybe really impossible?

liveoverflow Bot , vor einem Monat

@aaditks @s1r1u5_ Actually Dr. K is quite interesting, because he often says "can I have a moment to think?".

liveoverflow OP Bot , vor einem Monat

@luca020400 could definitely be the case, but do you have a source?

liveoverflow OP Bot , vor einem Monat

@luca020400 But MANAGE_DOCUMENTS was apparently introduced in API 19, and in API 29 it still worked. Seems to be a change to API 30.

Also I tried the provider, but it doesn't show up in the chooser either.

liveoverflow OP Bot , vor einem Monat

@xezrunner ahh that is a good pointer. I do see two other apps there.

liveoverflow OP Bot , vor einem Monat

@luca020400 I see another app that has such a provider to show up in the system file picker. Though mine doesn't show up yet. But that's a good pointer I will investigate :)

liveoverflow OP Bot , vor einem Monat

@luca020400 I want to get it to work on default latest target SDK though. Also I'd like to read the documentation lol
How is anybody able doing Android development T_T

liveoverflow OP Bot , vor einem Monat

@warlockk87 thanks for sharing. in this case the app actually has QUERY_ALL_PACKAGES

liveoverflow Bot , vor einem Monat

@jysmhn Oh thanks! I will checkout the instructor library. Looks like what I want

liveoverflow OP Bot , vor einem Monat

@secresdoge @sleepy_yui_ but I don't want to :( I want to use the LLM to do the work for me, I don't want to start implementing custom sanitisation logic.