Marcel
@MarcelD505
Followers
2,042
Following
77
Media
409
Statuses
2,023
- Cat lover - AKA ProgrammeerMeneer - Web, App and WebApp developer - Just doing some dumb shit as always - Studying IT at Hanze University of Applied Sciences
The Netherlands
Joined May 2020
Don't wanna be here?
Send us removal request.
Explore trending content on Musk Viewer
Gojo
• 251018 Tweets
#jjk261
• 226538 Tweets
Yuta
• 144101 Tweets
Luka
• 132130 Tweets
#GrandConcertENGLOTinLA
• 123490 Tweets
Emiliano
• 118868 Tweets
Maynez
• 109480 Tweets
Kyrie
• 102285 Tweets
キスの日
• 87096 Tweets
#MyLoveMixUpTH
• 84476 Tweets
Nuevo León
• 72892 Tweets
Gege
• 70681 Tweets
Mavs
• 62182 Tweets
बुद्ध पूर्णिमा
• 48915 Tweets
Karan Thapar
• 47925 Tweets
真島さん
• 46724 Tweets
真島茂樹さん
• 43333 Tweets
サマソニ
• 42064 Tweets
San Pedro Garza García
• 37348 Tweets
Kenjaku
• 37341 Tweets
Yuji
• 33759 Tweets
Movimiento Ciudadano
• 33572 Tweets
アンバサダー就任
• 27425 Tweets
भगवान बुद्ध
• 25806 Tweets
#BuddhaPurnima
• 22549 Tweets
マツケンサンバ
• 20055 Tweets
YSL BEAUTY X MEW
• 11420 Tweets
しょっぴー
• 10422 Tweets
ジャスティンミラノ
• 10040 Tweets
Pinned Tweet
My current collection of absolutely deranged android devices
147
330
5K
Ok so people already cracked the rabbit R1 and found out its android. People dumped the apk and i got it working (with root and a few mods) on a standard ass phone lmaoo
306
2K
18K
Without a valid rabbit IMEI, it will now get blocked server site. Still on the looks for the updater tool (and possibly a working IMEI lol)
Ok so people already cracked the rabbit R1 and found out its android. People dumped the apk and i got it working (with root and a few mods) on a standard ass phone lmaoo
306
2K
18K
25
101
3K
Guess who’s back on android phones? That’s right! Our little rabbit friend!
We have fought through:
⁃ “IMEI checks”
We discovered these literally don’t exist and you still can just use any string as IMEI
⁃ Other header checks
These are obfuscated across a few files and even
66
190
2K
More rabbit shenanigans, got lineage up and running for myself + google play services. Also rooted with magisk!
I also bricked it like 3 times in the process but fortunately recovered, however i don’t know what specifically did the trick to unbrick it lol
54
99
981
@JackRhysider
@thel3l
I pinky promise this is not a photoshop, we will do a writeup eventually, here is a short video. Note that this isn't my video and device but from someone in our team. We do all have the knowledge on how to do it.
11
24
605
@Michaelbolloz
I got the apk from someone that dumped it, rooted and upgraded my phone to android 14. The app only runs on 13 and up and as a system app. I then used a flipper zero to emulate the scroll wheel and set it up with a rabbit account. Now it’s like this lol
10
5
546
Interesting development on the latest OTA, seems like rabbit fixed terminal mode for other android devices. Previously it would just rotate the small rabbit instead of displaying the terminal. Thanks for fixing it i guess??😅
8
19
439
24
13
226
We will try other things like calling in a bit. I am not the owner of this device but it is someone else in the team which needs to come back from work.
What doesn’t work confirmed:
The motor for the camera, it’s stuck pointing down, but the camera works. So it’s just only gonna
4
0
196
@KaziAhmedDev
@thel3l
That’s entirely possible, even in the stock rom if it isn’t updated yet or you prepared and installed overlaying apps before updating.
1
2
179
@lucaslain
If you have one that isn’t updated/parched, yes. You can break into android. The rabbit runs A13.
4
2
172
Apparently i won something and now i have 100 dms asking me to give it away haha i don't even know what i won guys calm
28
2
153
@EricYockey
Proving the lies about api security to customers, and proving that it is still able to run with A LOT of tinkering.
2
1
128
Apk version number to prove it. The full version number of the apk is 20240424.1-1-gc10355b9-dirty and the ota version is rabbit_OS_v0.8.78_2024050219525.
You will see this as the first part of the os version in the about screen.
1
3
118
@CameronPak
@JackRhysider
@thel3l
Good call! We haven't tested it yet but i am pretty sure it would work.
0
0
112
94f835a8f06f59ec4477325b3a5d915200ec7999df3c2bf249c3e00d2a0d4bda
For future reference 👀
1
1
108
@GokuInnovates
@WillHobick
@FlutterDev
@flutterflow
The rabbit servers are real and the apk is definitely real. However this app is probably just connecting to openai instead of rabbit directly. (which is basically the same thing rabbit does lmao)
2
0
103
@jacksfilms
fortunately i am not a gamer sooo YAIY YAIY YAIY YAIY YAIY YAIY YAIY YAIY YAIY YAIY YAIY YAIY YAIY YAIY YAIY YAIY YAIY YAIY YAIY YAIY YAIY YAIY YAIY YAIY YAIY YAIY
6
1
93
you can navigate menus in rabbit app with a tv remote instead of a scroll wheel! should work on actual device too
that’s because the “scroll wheel” sends dpad actions, just like tv remotes, keyboards, or other accessories
8
5
163
1
2
92
@savi0joseph
We aren't removing a need to buy the product, as said, we will not share files, tutorials or valid credentials.
3
0
92
Full setup in glorious twitter compression, setup before this was rooting and having android 13 or higher. Then adding the app to have system level permissions.
Ok so people already cracked the rabbit R1 and found out its android. People dumped the apk and i got it working (with root and a few mods) on a standard ass phone lmaoo
306
2K
18K
2
7
91
This reminds me of something, can't quite place it
Hello World! 🍰📱
We're Cake.
Designing products that empower you to focus on what matters most, one connection at a time.
13
1
26
1
5
87
Got my own r1 first batch! And wow this thing is indeed orange 😅
Time to have some more fun with it!
From now on all API requests i will do will have my own IMEI attributed instead of the random invalid ones we used before.
7
1
87
It also launches fullscreen when it’s trying to establish connection, but then returns to the smol rabbit after it does?
3
2
78
We reversed the Rabbit R1 🐇 and got it to run on our phones!
This gives us future OTA updates, access to new features without a device + works perfectly without root/system perms!
(Blog post below)
41
149
1K
1
1
71
Okay, so we've done it again:
@rabbit_hmi
@jessechenglyu
I cracked the final apk but that was only possible with the help of:
-
@EmilyLShepherd
,
@MarcelD505
,
@thel3l
,
@uwukko
, media:
@MishaalRahman
2
4
97
0
2
69
@RKBDI
We see, we might have gotten confused with ip bans. Anyways we have it fully patched now so if they decide to check for more specific headers we got them
1
0
66
Jongens
@NietRickBroers
is helemaal niet weg, hij is gewoon hier in de inferno! Helaas wel dood....
1
1
60
I am ip banned from rabbit's servers, but it doesn't matter as i am on a vacation network and cellular still works so lol.
6
1
58
@EricYockey
Having a valid news outlet tied to this doesn't prove anything, ok, i will not go into further discourse.
1
0
54
If you want more updates, please follow me. We are trying to get it working on the update with a valid imei code.
1
1
52
2
0
52
@JEthenoobgamer
@lucaslain
Yes! But the videos have been privated sadly. I don’t own one so i can’t crack it.
2
0
49
Rabbit now also checks if the IMEI is remotely valid, if not, gives the user a delay that is about 5 minutes long before it answers. However, we can still register any IMEI and even used IMEIs because devices are linked to specific user accounts and are not only identified by
5
1
43
@AryaTheOpossum
The rabbit runs regular android 13. (at least the ASOP variant without all the fancy google apps and things). You could break out of it on the first firmware version but they have patched it. So until someone finds a new exploit you can't currently exit the app on the rabbit.
1
0
43
New OTA from 20 minutes ago already secured, dumped and patched. Seemingly the only API security that changed is that the C++ file now outputs a different string, nothing else. Cringe.
1
4
41
Confirmed that rabbit just uses openai for their answers or at least in some way. Vision kept working so that might use a different model. But it's slowly all falling apart. Progress on finding a new way to get it running under normal android hasn't lacked too!
4
2
34
now doesn't error anymore if you have cookies disabled. The only feature that will be missing is the storage of the light switch state.
1
1
30
@gigantinozip
We do, and are already figuring out a possible solution. We don't intend to share it unfortunately.
2
0
33
9
0
31
Some corrections + additions:
We think we are wrong about the certificate pinning part, we can still see requests made by the app but they get blocked by the server if using an http inspector tool. Something else is going on.
Our rabbit reponses are currently REALLY slow, mine
Guess who’s back on android phones? That’s right! Our little rabbit friend!
We have fought through:
⁃ “IMEI checks”
We discovered these literally don’t exist and you still can just use any string as IMEI
⁃ Other header checks
These are obfuscated across a few files and even
66
190
2K
2
0
31
Sorry visitors of this specific vacation home but your r1 will not work while you are here, oops 😅
2
0
29
@Bringus_Studios
Doom and minecraft have been ran! However the person privated the videos after threats from the rabbit CEO. We are now in a discord server trying to get the updated files working.
3
0
29
Rabbit now checks (we think) the JA3 fingerprint on every request via cloudfront, it isn't possible anymore to http inspect the api requests without getting everything EXACTLY right.
This is actually a good thing security wise. 😊
3
0
26
Btw with these tweets, i, or the team have no intentions to defame the company. All the things stated in our tweets are directly from our research and compared against statements rabbit has made in the past. We will also not distribute any files including but not limited to the
2
1
23
— about the rabbit incident —
I will not be sharing files. I have found some great people and we are trying to get things working again. Please don’t ask me or others (if you find them) for apks. Thank you for reading! 🙏
3
0
23
Apparently its a case for an apple watch, but it uhh REALLY LOOKS LIKE SOMETHING ELSE
3
0
24
Good security ideas for the rabbit team:
@cheyclough
@EmilyLShepherd
@rabbit_hmi
@AndroidAuth
Not even then, you could just use a valid imei in your request anyways, a lot get shared accidentally. The best thing would be is to bind an imei to a user account and MAKE SURE that only that user can use it though that link. But as of now you can use any imei in the known
1
0
6
0
2
18
Amazing things have been accomplished, that's all i will say for now.
2
0
18
Twitter doesn't let me upgrade cause i bought basic while i was on vacation in germany 😅
3
1
18
1
0
16
If anyone gets ahold of the updated rabbit apk or the updater tool, please share it with me.
2
0
16
My parents took our family to a computer museum for my dad's birthday. Safe to say they didn't lock down their systems that well. Could ctrl alt delete most of them and shut them down or open task manager lol
5
0
15
We are also not using IMEIs of real devices. We have generated a random string of numbers to work as a placeholder for an IMEI.
0
1
15
We will also not provide tutorials on how to obtain these files yourself, valid server communication details, and any server urls or vulnerabilities we may find.
2
0
15
FOUND! Thank you to the great person that sent it, time for more hackenings!
4
0
14
@JackRhysider
And btw if we do find a method to access customer data, we will not post about it but rather report it directly to rabbit.
0
0
14
I and a couple other people are now at the same stage
@MishaalRahman
is in terms of rabbit research. We have the ota image but it is a delta image, not a full rom. We really need someone with an exploitable r1 to continue.
0
2
13
@MishaalRahman
I accomplished this too, pretty funny. Vision crashes and notes don't seem to save to rabbithole. With the new update that just came out, i think they are checking IMEI numbers to verify that it can access the online service. But i would need to somehow get the updated app.
1
0
13
@JackRhysider
The way the API checks for if you actually own an r1 device, and not run the dumped APK like we have been doing on different devices, is to check a few request headers.
These headers are set by the app and include device credentials like IMEI, OS version and App version. These
1
0
12
Google ads metamask blocked suspended pancakeswap coinbase hacked blocked instagram hacked banned twitch hacked suspended i forgot my private key hardware key password lost help my gmail hacked crypto stolen lost buy bitcoin dogecoin ethereum stolen and lost
16
0
3
@app_settings
No, that would not be responsible. We aren’t sharing any files, guides, or valid credentials. Also it requires A LOT of tinkering if you want to get to the point we are.
1
0
12
Samen met
@OfficialMorrog
heb ik de aller eerste Nederlandse AI TTS gemaakt. Voor nu kun je meerdere stemmen gebruiken waaronder Morrog. In de toekomst willen we nog meer stemmen van streamers toevoegen!
Check hier:
En hier:
1
2
11
@JackRhysider
Yes, if you manage to unlock the bootloader, you can put all sorts of flavours of android on it and possibly a few other things too.
1
0
9
@NietRickBroers
Ik zeg altijd gelijk op nadat de trail ingaat, eigenlijk altijd heb je dan gewoon toegang zolang de trial dat toestaat en hoef je je niet zorgen te maken dat je het per ongeluk niet opzegt.
1
0
9
@stephenspencer
Maps to dpad up down so does work as a kinda scrollwheel. Ptt button is the power button.
0
1
11