Inane Observations $ sudo fix_it
  • Investigating a proprietary Android 2FA system

    02 December 2024 | android reverse engineering obfuscation security programming java | Comment

    This article concerns an Android app used as part of a proprietary two-factor authentication (2FA) system. Investigation of the app and 2FA protocol reveals some interesting design decisions.

    Overview

    The 2FA system is similar to well-known offerings such as Duo Security and Okta Verify.… »

  • Investigating a historical Android anti-root protection system

    24 November 2024 | android reverse engineering obfuscation security programming java | Comment

    This article concerns a specialised Android app used as part of a proprietary authentication protocol, developed in the late 2010s. Given the intended use case, the app features a number of aggressive security measures – the app uses FLAG_SECURE and does not run when developer… »

  • Spoofing Android device model via Smali patching

    31 December 2023 | android reverse engineering programming java | Comment

    I recently came up against an Android application which gates certain functionality behind detecting a ‘compatible’ Android device – which mine was not. My usual approach, on a rooted device, would be to use XPrivacyLua to spoof the device information returned to the application, but… »

  • Customising OsmAnd voice navigation to remove route numbers

    25 January 2020 | android programming open source | Comment

    OsmAnd is an open-source offline map and navigation app for Android, based on OpenStreetMap data.

    In my experience, OsmAnd's voice navigation is the most polished of all open-source Android navigation apps. However, it has a frustrating habit of always announcing street names in conjunction with… »

  • Guide: Magisk root and (Ed)Xposed using official releases on the Xiaomi Mi A2 (Android 9.0)

    24 January 2019 (updated 17 June 2019) | android superuser guide | Comment

    This is a guide on rooting the Xiaomi Mi A2 using Magisk and installing Xposed via EdXposed for Android Pie 9.0, using the official releases.

    Unlocking the bootloader

    Firstly we need to unlock the bootloader to allow us to flash new images. Go to Settings… »

  • Home
  • Git (Archives: GitLab, GitHub)
  • Research
  • Music
  • Posts
    • May 2025 (3)
    • December 2024 (2)
    • November 2024 (2)
    • September 2024 (2)
    • August 2024 (1)
    • More…
  • Tags
    • medicine (25)
    • copyright (20)
    • opentally (20)
    • drm (19)
    • encryption (12)
    • monash (12)
    • mathematics (11)
    • statistics (10)
    • proportional representation (8)
    • python (8)
    • victoria (8)
    • law (7)
    • meeting procedure (7)
    • ptv (7)
    • public transport (7)
    • rust (7)
    • defective by design (6)
    • digital rights management (6)
    • creative commons (4)
    • webassembly (4)
    • metro trains (3)
    • paediatrics (3)
    • politics (3)
    • 2fa (2)
    • c (2)
    • graphics (2)
    • mfa (2)
    • pdf (2)
    • victorian electoral commission (2)
    • android (5)
    • security (18)
    • cryptography (12)
    • programming (12)
    • voting systems (8)
    • med in review (11)
    • music (10)
    • parliamentary procedure (7)
    • totp (2)
    • reverse engineering (20)
    • obfuscation (12)
    • single transferable vote (19)
    • ebook (16)
    • elections (12)
    • java (6)
    • linux (33)
  • Lee Yingtong Li
  • blog@yingtongli.me
  • My CV · CV of Failures
@RunasSudo

Most material on this website is available under an open licence. See https://yingtongli.me/blog/copyright.html for details.