AI-FI: Reproducing adb to root on Google's TV Streamer using …
We reproduce our 2025 hardwear.io research where an ElectroMagnetic (EM) glitch escalates privilege from the adb shell to root on Google’s TV …
Read moreLatest Posts
setresuid(⚡): Glitching Google's TV Streamer from adb to …
We attacked Google’s TV Streamer 4K with an ElectroMagnetic Fault Injection (EMFI) glitch on the Mediatek MT8696’s CPU. From an …
Read moreAI-FI: Giving Claude Code Glitch Skills for Bypassing Secure …
We let an AI, namely Claude Code, orchestrate every part of a real Fault Injection (FI) attack. Driving the setup, the hardware tooling, debugging the …
Read moreGoogle Wifi Pro Glitching from Root to EL3 - Part 3
In this third blog post, we will explain in detail, how we were able get arbitrary code execution at EL3 leveraging the arbitrary write.
Read moreGoogle Wifi Pro Glitching from Root to EL3 - Part 2
In this second post, we explain in detail, how we used a single EM glitch to read and write a 32-bit value from/to an arbitrary address.
Read moreGoogle Wifi Pro Glitching from Root to EL3 - Part 1
In this first post, we explain in detail, how we were able to inject EM glitches in order to characterize Qualcomm’s IPQ5018 SoC susceptibility …
Read more