Carlos Holguera's Avatar

Carlos Holguera

@grepharder

Project Leader at @owasp for the OWASP Mobile App Security (MAS) flagship project. https://mas.owasp.org #mobilesecurity #grep #frida #radare2 #goodcoffee #reverseengineering

77
Followers 21
Following 4
Posts 05.02.2025
Joined
Posts Following

Latest posts by Carlos Holguera @grepharder

Sign Up | LinkedIn 500 million+ members | Manage your professional identity. Build and engage with your professional network. Access knowledge, insights and opportunities.

Thanks! See www.linkedin.com/posts/activi...

21.11.2025 13:00 πŸ‘ 1 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Preview
Release 1.12.0 Β· sensepost/objection The, wow, finally, a release release! πŸ˜‚ Honestly, there has been so much that has changed, and it's hard to thank and attribute to everyone that has contributed. To that end, thank you for your con...

We've been waiting 5 years for this: objection has been updated to 1.12.x with Frida17+ support. Thank you so much @leonjza.bsky.social and everyone who contributed!

github.com/sensepost/ob...

Thanks to @ipmegladon.bsky.social for updating the MASTG accordingly (OWASP/mastg/pull/3378)

21.11.2025 12:30 πŸ‘ 3 πŸ” 3 πŸ’¬ 0 πŸ“Œ 0

@ipmegladon.bsky.social hey, what's your name on LinkedIn? I'm thanking you in a post but couldn't find you

21.11.2025 12:25 πŸ‘ 1 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0

🚨Friendly reminder: The #CFP for #r2con2025 is still OPEN! There's plenty of time before October 24th, but if you want to talk about anything related to #radare2, please submit your talk ASAP! ✨ Let’s make this edition even better! πŸš€ #infosec

πŸ‘‰ radare.org/con/2025/

28.06.2025 08:07 πŸ‘ 2 πŸ” 2 πŸ’¬ 0 πŸ“Œ 0
Guardsquare Achieves MAS Advocate Status - OWASP Mobile Application Security

πŸ₯‡ Today we welcome our second MAS Advocate, @guardsquare.bsky.social who has consistently made high-impact contributions to the project, reviewed complex PRs, and made a tremendous impact during the past OWASP Project Summit. We hope that others will follow!

mas.owasp.org/news/2025/05...

23.05.2025 11:46 πŸ‘ 2 πŸ” 1 πŸ’¬ 1 πŸ“Œ 0
Video thumbnail

🚨 OWASP Global AppSec EU 2025 in Barcelona May 27–31!

For builders, breakers, defenders, leaders, and all others who want to engage with the best minds in AppSec.

πŸ”— owasp.glueup.com/eve...

#OWASP #AppSecEU2025 #Cybersecurity #AppSec #DevSecOps #AI #LLMSecurity #Hacking #InfoSec #Barcelona

21.05.2025 07:03 πŸ‘ 4 πŸ” 2 πŸ’¬ 0 πŸ“Œ 0

Last weekend I did some improvements for Decai

- load custom decompiler pipelines from external json
- deterministic mode for ollama, openai and claude
- add mistral endpoint.
- implement a vector database for embeddings from scratch in C with 0 deps

#radare2 #r2ai

11.02.2025 08:40 πŸ‘ 4 πŸ” 3 πŸ’¬ 0 πŸ“Œ 0
Post image

Comparing Decai decompilation using @anthropic.com 's Claude 3.5 vs 3.7 with a simple strcoll wrapper function #r2ai #radare2

25.02.2025 12:35 πŸ‘ 6 πŸ” 5 πŸ’¬ 1 πŸ“Œ 0
Video thumbnail

The new asm.lines.split creates a secondary column in the disassembly view for the backward branch lines making it easier to spot loops and understand the control flow #reverseengineering #disassembly #cli #tui

15.03.2025 00:04 πŸ‘ 9 πŸ” 4 πŸ’¬ 0 πŸ“Œ 0

I'd definitely recommend reading the MASTG, watching our talks and playing around with the new and awesome DEMOS (they're a bit like tutorials, if you will)!

mas.owasp.org/MASTG/0x05a-...
mas.owasp.org/talks/
mas.owasp.org/MASTG/demos/

26.02.2025 22:29 πŸ‘ 4 πŸ” 2 πŸ’¬ 1 πŸ“Œ 0
Post image

How to pass the OWASP MASVS verification by design?

In Admincontrol, our Android app and IOS app passed the @owasp.org MASVS verification by deciding security requirements and -controls using a game. Here is how...https://dev.to/owasp/how-to-pass-the-owasp-masvs-verification-by-design-2cf9 #appsec

14.02.2025 08:35 πŸ‘ 29 πŸ” 7 πŸ’¬ 3 πŸ“Œ 0