PDA

View Full Version : Blogs Forum

Pages : 1 2 [3] 4
  1. Reversity Speech and Logs Available
  2. Control Flow Deobfuscation Part 1
  3. Dvd movie and easter egg
  4. Thread Local Storage, part 7: Windows Vista support for __declspec(thread) in demand
  5. Thread Local Storage, part 6: Design problems with the Windows Server 2003 (and earli
  6. Thread Local Storage, part 5: Loader support for __declspec(thread) variables (proces
  7. Thread Local Storage, part 4: Accessing __declspec(thread) data
  8. Thread Local Storage, part 3: Compiler and linker support for implicit TLS
  9. Thread Local Storage, part 2: Explicit TLS
  10. Thread Local Storage, part 8: Wrap-up
  11. How does one retrieve the 32-bit context of a Wow64 program from a 64-bit process on
  12. Viridian guest hypercall interface published
  13. Why are certain DLLs required to be at the same base address system-wide?
  14. A catalog of NTDLL kernel mode to user mode callbacks, part 1: Overview
  15. A catalog of NTDLL kernel mode to user mode callbacks, part 2: KiUserExceptionDispatc
  16. A catalog of NTDLL kernel mode to user mode callbacks, part 3: KiUserApcDispatcher
  17. A catalog of NTDLL kernel mode to user mode callbacks, part 4: KiRaiseUserExceptionDi
  18. A catalog of NTDLL kernel mode to user mode callbacks, part 5: KiUserCallbackDispatch
  19. Thread Local Storage, part 1: Overview
  20. The optimizer has different traits between the x86 and x64 compilers
  21. Compiler tricks in x86 assembly: Ternary operator optimization
  22. Reversing the V740, part 4: Implementing a solution
  23. A catalog of NTDLL kernel mode to user mode callbacks, part 6: LdrInitializeThunk
  24. Common WinDbg problems and solutions
  25. Fast kernel debugging for VMware, part 1: Overview
  26. Fast kernel debugging for VMware, part 2: KD Transport Module Interface
  27. Fast kernel debugging for VMware, part 3: Guest to Host Communication Overview
  28. Fast kernel debugging for VMware, part 5: Bridging the Gap to DbgEng.dll
  29. Fast kernel debugging for VMware, part 6: Roadmap to Future Improvements
  30. VMKD 1.1.1.7 released
  31. Fast kernel debugging for VMware, part 4: Communicating with the VMware VMM
  32. Reversing the V740, part 3: The V740 abstraction layer module
  33. Reversing the V740, part 2: Digging deeper: The connection manager software
  34. Reversing the V740, part 1: Rationale
  35. Why doesn't the publicly available kernrate work on Windows x64? (and how to fix it
  36. The default invalid parameter behavior for the VC8 CRT doesnâ??t break into the debug
  37. I tend to prefer debugging with release builds instead of debug builds.
  38. More packer analysis
  39. Packer analysis
  40. Debugging a custom unhandled exception filter
  41. Collaborative RCE Tool Library contents so far
  42. ImageRemCert - Removes certificate from PE image.
  43. CommWarrior.B Thorough IDB (ARM/C++)
  44. MemInfo: Peer Inside Memory Manager Behavior on Windows Vista and Server 2008
  45. dr7.gd - dr6 saving
  46. Better user interface for decompiler
  47. The Windows Vista Issue
  48. Weird Code: CCs On The Stack
  49. Windbg “dt” output converter
  50. MmGetSystemRoutineAddress : forwards on vista
  51. Traversing Offset Semantics : Walking Along the Curb
  52. The Collaborative RCE Tool Library
  53. syscall fuzzer
  54. The secret project finally revealed...
  55. Site Relaunch
  56. A framework to take the tedium out of code-injection in C++
  57. Beware of int 2c instruction
  58. IDC scripting a Win32.Virut variant - Part 2
  59. IDC scripting a Win32.Virut variant - Part 1
  60. Nanomites by Deroko
  61. Hang problem due to Hooking Curb in Codes.
  62. Vaughn Of The Dead Pt III: Some small-fry
  63. Armadillo, Nanomites and vectored exception-handling
  64. Why Protected Processes Are A Bad Idea
  65. Behind Windows x64's 44-bit Virtual Memory Addressing Limit
  66. Purple Pill: What Happened
  67. Secrets of the Application Compatilibity Database (SDB) - Part 4
  68. New Object Manager Filtering APIs
  69. Vista DRM Issue Aftermath
  70. Rebooting from Kernel Mode
  71. Recent Events
  72. Update on Driver Signing Bypass
  73. Windows Vista 64-bit Driver Signing/PatchGuard Workaround
  74. How I cracked the iTunes 7 DRM, Pt V
  75. How I cracked the iTunes 7 DRM, Pt III
  76. Case study: Fraps
  77. RCE essentials: PEiD
  78. Run-time determination of VC++ 2005 virtual member function addresses
  79. DLL injection via CreateRemoteThread
  80. How I cracked the iTunes 7 DRM, Pt II
  81. How I cracked the iTunes 7 DRM, Pt I
  82. Drawing on another Direct3D program's viewport
  83. How I cracked the iTunes 7 DRM, Pt IV
  84. Bypassing IsDebuggerPresent
  85. RDP Botnets : Malware Google Dorking - Not an Easy Task
  86. Exploring Protocols 2: Writing some tools
  87. Exploring Protocols - Part 1
  88. Reversing a ZLib-Obfuscated? Network Protocol
  89. MITMing an SSLized Java App
  90. Analyzing Mac OS X Applications 101: CrashReporter and Malloc
  91. Refreshing Change Of Pace: Actual Technical Discussions at Nate's Blog
  92. BinNavi Traces IOS and ScreenOS. It's On, Yo.
  93. Mystery Vulnerability Theater 3000: Part I
  94. ridiculous_fish Open-Sources HexFiend!
  95. Is Win32 A Debugging API? If Not, How Close Is It?
  96. Experimenting with IDA 5.2's scriptable debugger
  97. Auditing Oracle with Cesar Cerrudo
  98. Undocumented Windows 2000 Secrets - free pdf edition
  99. PaiMei / PIDA Fun
  100. Breaking in DAV RPC INTERFACE : Peripherals
  101. Decompiler output ctree
  102. Intrinsic "_ReturnAddress()" C/C++ WTF!
  103. New face and new concept for the Reverse Code Engineering Video Portal
  104. Immunity Debugger Plugin Awards
  105. Immunity Debugger v1.1 Release
  106. For those who miss it: Immunity Debugger v1.2 Release
  107. Vista Heap, Controlling the Determinism.
  108. Python + Microsoft Minidumps
  109. Small PyDBG Enhancements Incoming
  110. Packet Sniffing With ImmunityDebugger
  111. Grey Box Web Application Testing With Immunity Debugger
  112. Visual Patterns for File Format Fuzzing
  113. Reliability of Pseudo Registers in Bug Tracking
  114. Dissecting Windows XP Svchost Internals : Traversing Core Parameters
  115. Stack Unwinding : Reliability Panorama
  116. Hardware Breakpoints : Stature
  117. Immunity Debugger is now released!
  118. Null pointer dereference in win32k
  119. An "extra pass" for IDA Pro
  120. Dancing with exceptions
  121. Updated APIScan
  122. Real Time Tracing
  123. My first entry
  124. Embedded Portable Executable File
  125. Comming soon! Uber process hooking/detour system!
  126. Assembly Custom GetProcAddress
  127. IDA's .IDS Files Part I
  128. Mysteries of win32k & GDI - Win32Thread
  129. Syscall lister
  130. Another IDA script: Dump section
  131. T2 2006 VM Analysis
  132. My Training Class
  133. ProcDump Thorough IDB
  134. IDA's .IDS Files Part II
  135. Future occupation: Archeological reverser?
  136. Automating analysis with PyDbg
  137. Interesting primer on Virtualization from VMware
  138. Mass deface with RFI scanners
  139. Why VMware is bad for shareware?
  140. ExeCryptor's code morphing "technology"
  141. Semi-automatic import recovery
  142. HELLO!
  143. Komodo Edit 4.2 released
  144. Visual Basic DllFunctionCall
  145. A new player in the virtualization arena for Mac
  146. VMWare Fusion?
  147. EXPLICATOR?
  148. Scripting fun
  149. Adding IDC commands to the out-of-the-box set
  150. OUTLAW ROOTKITS?
  151. LINUX AT LAST!
  152. Radio?
  153. Negated structure offsets
  154. IDA and Microcontrollers
  155. Hex-Rays SDK is ready!
  156. Coordinate system for Hex-Rays
  157. Trunk, Branches, and Leaves
  158. OpenRCE?
  159. Never say never
  160. Decompilation gets real
  161. Finally, good STL replacement?
  162. Hex-Rays beta testing is open!
  163. Very simple custom viewer
  164. Dynamic coloring
  165. Adding cross references
  166. On batch analysis
  167. Does 'return' come back?
  168. Video #5 is up.
  169. Editable Listview control
  170. IDA plugin: Extract (UnRot13) and analyze
  171. The Point-R technique
  172. Doing it without Weird Hacks (tm) is even easier
  173. imports are easy to fix
  174. New Video Tutorials website
  175. Exploiting the Otherwise Non-Exploitable on Windows
  176. Improving Automated Analysis of Windows x64 Binaries
  177. Fingerprinting 802.11 Implementations via Statistical Analysis of the Duration Field
  178. Wars Within
  179. Effective Bug Discovery
  180. Preventing the Exploitation of SEH Overwrites
  181. Exploiting 802.11 Wireless Driver Vulnerabilities on Windows
  182. Locreate: An Anagram for Relocate
  183. Subverting PatchGuard Version 2
  184. Mnemonic Password Formulas
  185. Memalyze: Dynamic Analysis of Memory Access Behavior in Software
  186. Reducing the Effective Entropy of GS Cookies
  187. Generalizing Data Flow Information
  188. A Catalog of Local Windows Kernel-mode Backdoor Techniques
  189. OS X Kernel-mode Exploitation in a Weekend
  190. PatchGuard Reloaded: A Brief Analysis of PatchGuard Version 3
  191. Real-time Steganography with RTP
  192. Abusing Mach on Mac OS X
  193. GREPEXEC: Grepping Executive Objects from Pool Memory
  194. Anti-Virus Software Gone Wrong
  195. 802.11 VLANs and Association Redirection
  196. Introduction to Reverse Engineering Win32 Applications
  197. Smart Parking Meters
  198. Loop Detection
  199. Social Zombies: Aspects of Trojan Networks
  200. Mac OS X PPC Shellcode Tricks
  201. Annoyances Caused by Unsafe Assumptions
  202. Implementing a Customer X86 Encoder
  203. Bypassing Windows Hardware-enforced DEP
  204. Temporal Return Addresses
  205. Inside Blizzard: Battle.net
  206. Bypassing PatchGuard on Windows x64
  207. Analyzing Common Binary Parser Mistakes
  208. Attacking NTLM with Precomputed Hashtables
  209. Linux Improvised Userland Schedular Virus
  210. FUTo
  211. Post-Exploitation on Windows using ActiveX Controls
  212. Thick Clients Gone Wrong
  213. Windows Kernel-mode Payload Fundamentals
  214. Funny API function inside ntdll.dll
  215. Upack
  216. Code injection
  217. How to get the Virtual Address of a PE section with IDA
  218. Finessing Import REConstructor
  219. REcon 2005
  220. Getting around anti-debugger code
  221. Forcing IDA's "Create function..." on functions containing invalid code
  222. When the Red Pill is Hard to Swallow
  223. Using Structure Offsets as Symbolic Constants in IDA
  224. Unpacking DLLs and Drivers with OllyDbg
  225. Terms of the Trade
  226. Circumventing custom SEH
  227. Advanced Malware Deobfuscation training course at Black Hat
  228. Function Analysis
  229. Counting Lines of Source Code
  230. Loading Drivers in OllyDbg
  231. Career Shift
  232. Stateless Bi-Directional Proxy
  233. Investigating Outlook's Single-Instance Restriction (PART 1)
  234. Investigating Outlook's Single-Instance Restriction (PART 2)
  235. Virus Bulletin 2006
  236. Using assembly buffers in C++ without using hex-strings
  237. stuffz
  238. Блогујем ја, блогујеш ти....
  239. ВМВаре видимо се : vmware detection
  240. Свету се немодзе угодити
  241. Виртуелно, виртуелно и машински
  242. Making an advanced api redirection more advanced?
  243. Some words on how to decrypt trojan Ascesso
  244. Something About Firewall Hooking and Packet Filtering #1
  245. Hello World
  246. A Framework for Hash Algorithms Analysis
  247. Something About Firewall Hooking and Packer Filtering #2
  248. hm
  249. First blog entry ever on Woodmann.com!
  250. A Guide to Decompiler Design - Part 0