Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Nicolás Alvarez Profile picture
Nicolás Alvarez
@nicolas09F9
I'm now at @nicolas17@treehouse.systems or https://t.co/t8GFVx5ZFl
Aug 15, 2022 4 tweets 1 min read
Looking at the phone app for the Samsung PowerBot-E (robotic vacuum), seems to be typical IoT crap. Talks to cloud over port 443 but it's not TLS (custom encryption?), sends broadcast UDP packets with plaintext JSON, GUI made in HTML, has a vuln in it... Logs and code comments in Chinese...
Jun 29, 2022 5 tweets 2 min read
Hola @MovistarArg tienen hasta las 0hs para devolverme los $39 por el Internet x Día que NO activé. Hace más de un año que me tienen con esta estafa (busquen reclamo 000000231953308). ImageImageImage Me boludearon por DM como siempre? Me boludearon por DM como siempre.
Jan 20, 2022 8 tweets 2 min read
My Apple Watch was on an old watchOS 6, and while my iPhone was on iOS 14.4, it let me update it to watchOS 6.3, but not to 7.x.

I updated my iPhone to iOS 14.8, and now it refuses to communicate with my watch (notifications don't work etc). It says I *have* to update watchOS. However, if I try to update watchOS, the Watch app says my iOS is outdated and that I have to update to iOS 15.x (after which it would update the watch to watchOS 8.x). I don't want to update to iOS 15.
Dec 13, 2021 4 tweets 1 min read
<key>FirmwareSHA1</key>
<string>123d259fc25fd775576acaa83747bf5311ca</string>

Hey Apple, quick question, how many bytes do SHA-1 hashes have? Oh cool there's *another* wrong SHA1. Guess it's burnout december and Apple's generation of this plist isn't automated enough.
Dec 6, 2021 4 tweets 2 min read
Many parts of iCloud Keychain are actually open source: opensource.apple.com/source/Securit…

And even then it's hard to tell what some codenames mean. I wonder if Apple redacts in-code documentation before publishing it or if they don't have any to begin with 🤔 But I managed to figure out *some* stuff. So instead of "what the heck are SOS and CKKS and Engram and Manatee", now I know "SOS (SecureObjectSync) is the old sync system, CKKS (CloudKit Keychain Sync) is the new one, Engram and Manatee are some CKKS-only keychain sync views"
Aug 12, 2021 4 tweets 1 min read
I'm now adding these keys to the wiki. It took some tweaking to make the scripts handle the new files in iPhone 11's ipsws, but now it's ready and I can automate it 😎
theiphonewiki.com/wiki/Firmware_… The wiki is a terrible place for these. It's absurd to format this stuff into wiki markup, and then have other scripts that parse that (or the HTML) back into a usable form to eg. get keys for decryption.