Over the past years, I have enjoyed connecting with each and every one of you. I have cherished our conversations, shared our laughter, and supported each other through thick and thin. However, as I reflect on my life's path, I have come to realize that my…

Over the past years, I have enjoyed connecting with each and every one of you. I have cherished our conversations, shared our laughter, and supported each other through thick and thin.

However, as I reflect on my life's path, I have come to realize that my online presence is no longer fulfilling me in the same way. It has become a source of stress and anxiety, and it has hindered my ability to focus on what truly matters to me in my real life.

“No matter what you do for someone it seems you'll still be missing something and you're not gonna get recognised.”

For some I was never a good friend,
For some I was never a good student,
For some I was never a good brother,
For some I was never a good (just leave this one it's personal I don't wanna talk),
So in the end I was never good at anything but just a burden everyone was carrying.

Nobody knows What will happen at what point in life.

I know that some of you may be disappointed by my decision, and I apologize for any inconvenience it may cause. Also sorry if ever I've made you feel bad or my behaviours were wrong towards you but it's the truth afaik I've never wished to be harsh on anyone.

I want to thank you all for the memories we have shared and the support you have given me. I will always cherish the bonds we have formed.

I may not be on Telegram anymore, but I will never forget the friendships I have made here. I wish you all the best in your future endeavors.

My all channels and groups/accounts will be archived/deleted soon

With love and gratitude,
Farewell,
Abhi

Flutter Reverse Engineering: Object Pool Analysis

What's in this PDF:
⦁ Analyzing the object pool in Dart VM.
⦁ Dealing with enum types in Dart VM.
⦁ Dive into ARM Assembly.

Note:
The PDF explains various codes of Dart VM, which we have converted into Smali for better understanding by members. Download the demo app and analyze its codes:
*? Demo App to Understand Dart VM Codes*
https://t.me/TDOhex/443

Example used in this PDF:
App Name: Narrative\-Write your own novel
Version: 6.1.15(700017)
Play Store Link:
https://play.google.com/store/apps/details?id=app.gonarrative.narrative

? Flutter Examples to Reach Place to Patch Through revenuecat
https://t.me/TDOhex/439

? Flutter Reverse Engineering: Boolean Mystery in Dart VM
https://t.me/TDOhex/440

*? Patches for Boolean Function of Dart VM*
https://t.me/TDOhex_Discussion/19429

*? For Index of Other Tutorials:*
https://t.me/TDOhex/376

*?*?????????
? Guide by @TDOhex ♻️ Join us for more Info
??????????**

https://github.com/Kirlif/Python-Stuff/blob/main/CRCFix.py

Here is CRCFix.py, a reliable python « crcfixer » produced by Kirlif':
- fix all files by default.
- fix all date/time fields by default.
- create a new file: my_package_crc.apk
Options available:
- restore only dex files CRC
- not restore date/time
- patch the mod directly or not

If needed we can pass a bundle package to the CLI (base package at first).

usage: CRCFix [\-h] [\-v] [\-c] [\-d] [\-t] [\-f] source [source ...] target

Source: https://t.me/TDOhex_Discussion/30097

Breaking: Critical Vulnerability Exploited in Pay*M Banking UPI App, Leading to Wallet Fund Manipulation Date: March 28, 2024 By Offensive Security Team The reporter has asked us for his identity to be kept anonymous, thereby mentioned as "I". Summary:…

Breaking: Critical Vulnerability Exploited in Pay*M Banking UPI App, Leading to Wallet Fund Manipulation

Date: March 28, 2024

By Offensive Security Team
The reporter has asked us for his identity to be kept anonymous, thereby mentioned as "I".

Summary:

Through a comprehensive security assessment, I have uncovered a critical vulnerability in the Pay*M Banking UPI app that enables malicious actors to manipulate user wallet funds. This vulnerability has potentially exposed sensitive financial data and enabled unauthorized access to accounts.

Technical Details:

The vulnerability stemmed from an improper implementation of the UPI payment flow. By exploiting a series of logical flaws, I was able to bypass security measures and gain access to the underlying payment processing system. This allowed me to execute unauthorized transactions and manipulate my wallet balance.

Exploitation:

Using a custom-developed exploit, I was able to successfully exploit the vulnerability in a live environment. The exploit involved a complex sequence of steps, including intercepting and modifying payment requests, as well as manipulating server responses.

Impact:

The exploitation of this vulnerability has serious implications for Pay*M Banking customers. Malicious actors could potentially:

• Steal funds from user wallets
• Redirect payments to unauthorized accounts
• Gain access to sensitive financial data

Mitigation:

Pay*M Banking has been notified of the vulnerability and is working diligently to implement necessary security patches. Customers are advised to update their UPI app to the latest version and to be vigilant for any suspicious activity.

Proof of Concept:

As evidence of the vulnerability's existence, I have attached an APK file of the vulnerable Pay*M Banking UPI app. This file is fully functional and can be used to demonstrate the exploitation.

Note: The attached APK file is provided for educational purposes only and should not be used to exploit the vulnerability. Any unauthorized use of this file is strictly prohibited. Also focus on what purposes file can be used.

Call to Action:

I urge all Pay*M Banking customers to take immediate action to protect their accounts. Update your UPI app to the latest version and report any suspicious activity to your bank promptly.

About the Researcher:

I am an independent security researcher with a deep understanding of mobile payment systems and their vulnerabilities. I am committed to uncovering and disclosing critical security flaws to help organizations and individuals protect their financial assets.

Disclaimer:

This report is published for educational purposes only. The researcher assumes no responsibility for any damages resulting from the misuse of the information contained herein.

Bard's latest updates: Access Gemini Pro globally and generate images
Article

For AiTestKitchen:
Currently available to U.S., Australia, New Zealand and Kenya

So use VPN if you're from other countries ?**

For bard: just roll over to bard.google.com and enjoy

Google

Bard’s latest updates: Access Gemini Pro globally and generate images

We’re expanding Gemini Pro in Bard to all supported languages and bringing text-to-image generation into Bard.