Joachim Hyrathon

About Me

I am a security researcher from Qihoo 360, mainly focusing on Android related targets. I have been looking into some attack surfaces like NFC, Binder, Media Codecs and TrustZone.

Find me:

Twitter: @JHyrathon

Wechat: hyrathon

Mail: hyrathon@gmail.com

Presentations

Slides

Whitepaper

[Blackhat Asia 2021] Wideshears: Investigating and Breaking Widevine on QTEE

Slides

Whitepaper

Hunted Bugs

PoCs can be found here: https://github.com/hyrathon/hyrathon.github.io

IDComponentLink
CVE-2019-2017NFChttps://source.android.com/security/overview/acknowledgements#mar-2019
CVE-2019-2027Tremolohttps://source.android.com/security/overview/acknowledgements#apr-2019
CVE-2019-2034NFChttps://source.android.com/security/overview/acknowledgements#apr-2019
CVE-2019-2099NFChttps://source.android.com/security/overview/acknowledgements#june-2019
CVE-2019-2118Binderhttps://source.android.com/security/overview/acknowledgements#july-2019
CVE-2019-2135NFChttps://source.android.com/security/overview/acknowledgements#august-2019
CVE-2019-2178NFChttps://source.android.com/security/overview/acknowledgements#september-2019
CVE-2019-2187NFChttps://source.android.com/security/overview/acknowledgements#october-2019
CVE-2019-2207NFChttps://source.android.com/security/overview/acknowledgements#november-2019
CVE-2019-9358NFChttps://source.android.com/security/overview/release-acknowledgements
CVE-2020-0050NFC HCIhttps://source.android.com/security/overview/acknowledgements#march-2020
CVE-2020-0216NFChttps://source.android.com/security/overview/acknowledgements#june-2020
CVE-2020-11132BOOT/UEFISECAPPhttps://www.qualcomm.com/company/product-security/bulletins/november-2020-security-bulletin#_cve-2020-11132
CVE-2020-11293Widevine TAhttps://source.android.com/security/overview/acknowledgements#may-2021
CVE-2020-11304Widevine TAhttps://source.android.com/security/overview/acknowledgements#june-2021