Integer Arithmetic

Good set of slides that provide an overview of chapter 7 in “Assembly Language for Intel based computers” by Kip R. Irvine. These notes are a great resource whether you’re doing crackme’s, reversing larger algorithms, or just dealing with some code that has compiler optimized math functions in it.
Chapter 7 Lecture

Grayhat Python Review

Gray Hat Python: Python Programming for Hackers and Reverse Engineers
Gray Hat Python: Python Programming for Hackers and Reverse Engineers (Paperback)
by Justin Seitz
Publisher Description
Python is fast becoming the programming language of choice for hackers, reverse engineers, and software testers because it’s easy to write quickly, and it has the low-level support and libraries that make hackers [...]

You may have stripped Symbols…

When programming it is always nice to be verbose. Be verbose in the commenting of your code and your error messages is something taught in most academic programming courses and even the good programming books. Today however I saw a new level of verboseness which helped cut my reversing time by a large amount.
As with [...]

AVG And Nessus

Not sure if anyone else is seeing this but it has steadily been vexing me for the past 6 months. One of my clients uses Nessus on a regular basis and about 6 months ago started seeing every host report back “No significant Problems” on almost every single host. Knowing the networks he’s been scanning [...]

The things Ive learned

In Late 2007 I took a position doing reverse engineering, mostly on embedded systems. RE was something I wanted to get into on a professional grade for some time but could never find a segway into it. Now being in the thick of it I’ve come to learn quite a bit through my experience. Reverse [...]

TFTPServer v1.4 DOS POC

Running out of time to play with this bug, still need to pack for my flight early tmw morning. Code at the bottom results in a DOS. I fiddled a little with the POC but throwing that much data at it does not seem to do anything, almost as if the program is just dropping [...]

pcio and root

Quick word of wisdom. If you are running the cpio utility in linux and the cpio archive happens to have a directory structure which includes /lib, /usr, /etc/and /sbin or any others similar to a linux file system. It is in your best interest not to run cpio on the archive file as root. Unfortunately [...]

Hot New TFTP Request for Sulley

TFTP Request module for Sulley Fuzzing Framework, located here.
If you find something wrong with it, or make it better let me know.

RSS Update

Please Update your RSS Address… I may or may not have messed up the old one!
Not like I update the site anyway, but I might get around to it after I complete some of the studies I’ve been doing. Just been neck deep with family stuff and books lately.

Ruby not Playing well with Metasploit

A few days late on the metasploit blog post update. A recent Pen test bought about some great headaches for me as I encountered all sorts of issues with the 3.1 framework. According to HD updates to ruby have broken the ability to use short name constants which are littered throughout the framework. Some of [...]
Next Page »