03/10/15

Beta Apps – Unfinished Toys

As a developer, there are many times where I don’t “quite” finish an application.  And today, while hunting for a screenshot, I realized my camera folder was full of hidden goodies.

Sometimes I get busy, or I forget, or its a half-assembled project that I just don’t have time to complete.

IMG_20150309_165641

This list will continue to grow, and may actually contain some beta links in the near future.  But for now it gives you an idea of what you can find in a developers camera folder!

Edit:  I’ve decided to go ahead and post BAR files for the samples below :)  Remember they will be buggy and barely usable, sometimes little more than a proof of concept.  You’ve been warned! Continue reading (171)

03/10/15

Web Security Analysis of (more) BlackBerry 10 Applications

687355e6c0ed148caed1f7503f9b6486

Since creating the first article, I’ve had a barrage of requests to create a follow up article.  Before I jump into those though, I want to mention that following the previous article several developers have made changes to their code and one developer in particular has taken the article seriously and dropped everything to adopted new strategies to their apps.  The new Inst4gram application may look the same on the outside as Insta10 – but after careful testing – it has had some critical foundational changes (in a good way) as mentioned in this tweet.

In addition, several other applications mentioned such as Blaq have also buttoned down the hatches on any findings and several applications are no longer available.  So without further ado, lets run through a list of applications. Continue reading (197)

02/9/15

Follow Up: Web Security Analysis & Brief How To

escalated_quickly

Its been about 12 hours (over 12 hours now since I type slow, get side tracked easily, and ended up eating crackers) since the first security analysis has gone online from FileArchiveHaven for mobile applications.  I have to say I’m impressed with the passion of the readers and the developers and this article sure gathered more attention than expected.  This follow up article covers “whats new” from yesterday, some additional logs and details for tech types, and how you can go about checking applications yourself (its easier than you think).

So if you want to know how to do some basic testing of applications yourself, then this update might be for you!  If you want to see a bit more of the data collected, then this might be for you as well!  If you want something funny or witty then… well this article might not be for you (its probably going to be a little dry). Continue reading (1064)

02/9/15

Web Security Analysis of 12 BlackBerry 10 Applications

There are many things that tie BlackBerry users together, and one of those has always been the importance of security.  Some people forget that being secure means more than just ensuring an application is virus free!  Nefarious (what a great word) applications can access private data, sneak that data out to private websites, and even monitor your device traffic to keep tabs on what your doing all without the user knowing.  Real dangerous applications can go even farther, allowing a developer to remotely execute code on a users device without the users permission!  Imagine, applications that can decide what you can and can’t do, search the internet for things without you knowing or perform actions on your phone without your knowledge.

Not only are these security concerns very real, but they go unnoticed by all major platforms during testing and validation cycles.  No major device manufacturer at this time that I am aware of is monitoring applications submitted to their platforms for what data is being sent and received.  Although, to give them credit, BlackBerry has done a fantastic job of limiting what applications with back-doors can do.

Read ahead to see how 12 applications perform back-to-back in a test for Web Security for BlackBerry 10 (Spoiler:  They might not do as well as you think!).

Continue reading (5413)

12/3/14

Remotely Controlling your BlackBerry 10 Device using Myo

Have you ever wished you could remotely control your BlackBerry 10 phone?  At times, this can certainly come in handy, and after starting my new career in 3D software development and touch-less interaction, I couldn’t resist seeing what this could do with my brand new BlackBerry Passport.

Caution: Your mileage will vary. This is not a stable or official solution at this time but it does work. In the meantime I’m looking at building a Cascades or Unity solution!

First, it helps to know what Myo “is”…

Myo from Thalmic

Missing Plugin? That means you have flash disabled (it’s a YouTube video) or that you are using BB10.3.1 and you no longer can use flash.  Click on the title for the full article :)

Continue reading (644)