Lukas Arnold

@lukasarnld
196 Followers
260 Following
28 Posts
Researching iOS' Cellular Protocol Stack @ SEEMOO | Studying CS @ TU Darmstadt
homepagehttps://lukasarnold.de
Show threadLukas ArnoldFeb 8

@marioguzman There‘s a cool #OBTSv8 talk from @clearbluejar about patch diffing with a hybrid approach (deterministic and non-deterministic tools)

https://youtu.be/vo2YbTHSLOA

#OBTS v8.0: "Reverse Engineering Apple Security Updates" - John McIntosh

YouTube
Lukas ArnoldDec 28
🧙🖳✨Dec 28

Do you know where your child is?
Are you sure?

Come join me explore the security of children's smartwatches (including evil witches, clothespins, and the secret to teleportation)
Tomorrow / Monday at #39c3 and online, 13:50 Hall Zero.

seemoo.de/s/c3-xplora

Lukas ArnoldOct 27

I just published the slides of my #OBTS v8.0 talk about Apple's #C1 baseband. Our C1 #binja loader is now available on GitHub, and you can find a recording on YouTube.

https://lukasarnold.de/posts/obtsv8-talk/

OBTS v8.0: Diving into C1

Learn more about my talk “What’s at the Bottom of the Sea, One Baseband? - Diving into the C1” at eight edition of the Objective by the Sea conference.

Lukas Arnold
Lukas ArnoldOct 16
Thanks for joining my #OBTSv8 talk about Apple's novel #C1 & #C1X basebands. I'm glad to be back at this awesome conference. We'll release the slides and tooling in the coming days.
Show threadLukas ArnoldAug 1, 2025
@jiska Congratulations 🥳
Lukas ArnoldJul 24, 2025

I‘m glad to be back at #OBTS v8.0 with a talk about Apple‘s #C1 baseband and carrier profiles

https://objectivebythesea.org/v8/talks.html#Speaker_14

#OBTS v8.0: Talks

Conference Talks

Show threadLukas ArnoldJul 21, 2025
@rmondello I agree, as the native experience is often way better than the one provided by a browser extension.
I store my passkeys in iCloud and passwords in Bitwarden. Thus, I have to enable both password managers in Safari simultaneously, but they often interfere with each other. I would love an option to turn off iCloud‘s password auto-fill and only use its passkeys.
Lukas ArnoldJul 11, 2025
jiska 🦄Jul 11, 2025

The Apple Watch has a closed down ecosystem, only compatible with the iPhone. @trusted_device reverse engineered its interfaces and opened it up for compatibility with Android! ✨ WatchWitch ✨ allows you using your Apple Watch ⌚ on Android devices, interpreting your health data, answering messages on the Watch and more.

Demo video: https://www.youtube.com/watch?v=dHz8NHMhtLY
Read the full paper: https://arxiv.org/abs/2507.07210

Lukas ArnoldJul 9, 2025
LaF0rgeJul 9, 2025
Very interesting applied security research into the #GSMA #eSIM universe, specfically the use of the JavaCard VM with its questionable security architecture depending on an off-card bytecode verifier in the context of the eUICC which inherently contains eSIM profiles of different [competing] mobile operators, each of which can install arbitrary Java applets into the same eUICC. #GSM #3GPP #cellular #simcards
https://security-explorations.com/esim-security.html
Security Explorations - eSIM security

Show threadLukas ArnoldJun 21, 2025
@mattiem I‘ve recently discovered https://github.com/johnpatrickmorgan/NavigationBackport. It enables you to use the NavigationStack of iOS 16 on iOS 14. It does wonders compared to the bug-ridden NavigationView.
GitHub - johnpatrickmorgan/NavigationBackport: Backported SwiftUI navigation APIs introduced in WWDC22

Backported SwiftUI navigation APIs introduced in WWDC22 - johnpatrickmorgan/NavigationBackport

GitHub