setresuid(⚡): Glitching Google's TV Streamer from adb to …
We attacked Google’s TV Streamer 4K with an ElectroMagnetic Fault Injection (EMFI) glitch on the Mediatek MT8696’s CPU. From an …
Read moreLatest Posts
AI-FI: Giving Claude Code Glitch Skills for Bypassing Secure …
We let an AI, namely Claude Code, orchestrate every part of a real Fault Injection (FI) attack. Driving the setup, the hardware tooling, debugging the …
Read moreGoogle Wifi Pro Glitching from Root to EL3 - Part 3
In this third blog post, we will explain in detail, how we were able get arbitrary code execution at EL3 leveraging the arbitrary write.
Read moreGoogle Wifi Pro Glitching from Root to EL3 - Part 2
In this second post, we explain in detail, how we used a single EM glitch to read and write a 32-bit value from/to an arbitrary address.
Read moreGoogle Wifi Pro Glitching from Root to EL3 - Part 1
In this first post, we explain in detail, how we were able to inject EM glitches in order to characterize Qualcomm’s IPQ5018 SoC susceptibility …
Read moreEspressif ESP32: Using Crowbar Glitches to Bypass Encrypted …
In this blog post, we describe our adventure(s) reproducing our EMFI attack on Espressif’s ESP32 using Crowbar glitches.
Read more