Carlos Holguera

@grepharder@infosec.exchange
43 Followers
34 Following
40 Posts

Project Leader at @owasp for the OWASP Mobile App Security (MAS) flagship project.

https://mas.owasp.org


#mobilesecurity #grep #frida #radare2 #goodcoffee #reverseengineering

Carlos HolgueraJun 14
NowSecureMay 30

#Connect25 is bringing an #AI + reverse engineering session diving into #r2ai!

@pancake Creator of #radare2 and Senior Mobile Security Research Engineer at NowSecure, will show how AI is transforming reverse engineering. In this session, you’ll see how AI can:
- Analyze mobile apps
- Detect privacy issues
- Help you understand what’s going on step by step

See the #r2 session and register here: https://events.bizzabo.com/nowsecure-connect-2025/agenda/session/1628655?utm_source=mastodon&utm_medium=organic&utm_campaign=connect25&utm_content=may30

Carlos HolgueraJun 14
NowSecureJun 2

#Frida fans - at #NSConnect 2025 June 18, join @oleavr, creator of Frida and Senior Mobile Security Research Engineer at #NowSecure, for a hands-on look at what’s new and brewing in Frida for 2025!

Check out the event and register: https://events.bizzabo.com/nowsecure-connect-2025/agenda/session/1642274?utm_source=mastodon&utm_medium=organic&utm_campaign=connect25&utm_content=june2

Carlos HolgueraJun 9
NowSecureJun 9

As AI flows into mobile apps, new security, privacy, and compliance risks are emerging - many that traditional frameworks miss.

Join @grepharder at #NSConnect25 for a deep dive into:
🔍 Detecting hidden AI behavior
📊 Avoiding regulatory risks
🛡️ Applying MASVS to mitigate threats

See more on the session and register for the event here: https://events.bizzabo.com/nowsecure-connect-2025/agenda/session/1628649?utm_source=mastodon&utm_medium=organic&utm_campaign=connect25

Carlos HolgueraMay 29
NowSecureMay 29
Join @grepharder at #NSConnect25 June 18 for the latest update from the #OWASP MAS project. Carlos will share the new MASWE (Mobile Application Security Weakness Enumeration) and #MASTG v2 atomic tests with live demos. Register here: https://events.bizzabo.com/nowsecure-connect-2025/agenda/session/1628647?utm_source=mastodon&utm_medium=organic&utm_campaign=connect25&utm_content=may29
Carlos HolgueraMay 23
OWASP MASMay 23

🥇 Today we welcome our second MAS Advocate, @guardsquare! Over the past year, Guardsquare has consistently made high-impact contributions to the OWASP MAS project, reviewed complex pull requests, and made a tremendous impact during the past OWASP Project Summit. We love their commitment to the project and hope that others will follow their lead.

https://mas.owasp.org/news/2025/05/23/new-advocate-guardsquare/

Guardsquare Achieves MAS Advocate Status - OWASP Mobile Application Security

Carlos HolgueraMay 21
OWASP FoundationMay 21

🚨 Time is running out to register for OWASP Global AppSec EU 2025 in Barcelona from May 27–31!

This event is for builders, breakers, defenders, leaders, and all others who want to engage with the best minds in AppSec, explore emerging tech like AI and LLM security, and connect with OWASP project leaders.

🔗 Register now: https://owasp.glueup.com/event/123983/register

#OWASP #AppSecEU2025 #Cybersecurity #AppSec #DevSecOps #AI #LLMSecurity #Hacking #InfoSec #Barcelona

Registration ⇽ OWASP Global AppSec EU 2025 | The OWASP Foundation Inc.

Register for "OWASP Global AppSec EU 2025" hosted by The OWASP Foundation Inc.

Glue Up
Carlos HolgueraMay 21
pancake Aug 19, 2023
Slides from the #0x41con talk "Modern Jailbreaking Techniques" - https://github.com/opa334/Presentations/blob/main/0x41con%20-%20Modern%20Jailbreaking%20Techniques.pdf by @opa334dev
Presentations/0x41con - Modern Jailbreaking Techniques.pdf at main · opa334/Presentations

Contribute to opa334/Presentations development by creating an account on GitHub.

GitHub
Carlos HolgueraFeb 26
Show threadpancake Feb 26
@radareorg friendly reminder that you can use r2dec as a base decompiler for Decai with the following command: "decai -e cmds=pdd". By default Decai uses "pdc" which is the pseudo-decompiler shipped in #radare2
Carlos HolgueraFeb 14
 radare Feb 14
rabin2 is now also known as “MASTG-TOOL-0129” https://github.com/OWASP/owasp-mastg/pull/3154 by @grepharder #owasp #mstg
Add rabin2: MASTG-TOOL-0129 by cpholguera · Pull Request #3154 · OWASP/owasp-mastg

This pull request focuses on updating references to the rabin2 tool across various documentation files to use the newly created @MASTG-TOOL-0129 reference. The most important changes include updati...

GitHub
Carlos HolgueraNov 20, 2024

Check out my latest talk at r2con in Barcelona: A brand new take on OWASP MAS and reverse engineering with @radareorg and AI.

Thanks to @pancake and the whole team for bringing r2con back to life, the best security conference in the world.

Also check out all the other amazing talks by @pancake, @oleavr, @bezjaje, @as0ler and others, you definitely won't regret it! Simply the highest quality hacking material out there.

https://www.youtube.com/watch?v=l_Q_1WZuyjo

#mobilesecurity #reverseengineering #radare2 #frida #ai

r2con2024 - day 2 - Hack-proof your mobile apps - grepharder

YouTube
×
NowSecureJun 9

As AI flows into mobile apps, new security, privacy, and compliance risks are emerging - many that traditional frameworks miss.

Join @grepharder at #NSConnect25 for a deep dive into:
🔍 Detecting hidden AI behavior
📊 Avoiding regulatory risks
🛡️ Applying MASVS to mitigate threats

See more on the session and register for the event here: https://events.bizzabo.com/nowsecure-connect-2025/agenda/session/1628649?utm_source=mastodon&utm_medium=organic&utm_campaign=connect25