diff --git a/2026/insomnihack/mobile/peaky_binders/writeup.md b/2026/insomnihack/mobile/peaky_binders/writeup.md index df416cd..0bc4278 100644 --- a/2026/insomnihack/mobile/peaky_binders/writeup.md +++ b/2026/insomnihack/mobile/peaky_binders/writeup.md @@ -219,7 +219,7 @@ It not only told me that the standard path is `/data/data//shared_ ### Writing the Exploit -As I never wrote an APK before and had no Idea how to handle IPC on Android. I generated the following exploit with Claude. +As I never wrote an APK before and had no Idea how to handle IPC on Android I generated the following exploit with Claude. It feels a bit filthy but trying to first blood the challenge made me rush. In summary the malicious APK overwrites the webhook URL and the filepath byte per byte and triggers a full read at the end.