RCE Messageboard's Regroupment > Blogs Forum

Pages : [1] 2 3

1. Hex-Rays Plugin Contest
2. Win32k.SYS system call table
3. KiTrap06(#UD)
4. Using MATLAB and Mathcad for solving (mesh current) equations.
5. Unexported SSDT functions finding method
6. Elevation of Privilege DLL Patcher
7. Hex-Rays is hiring
8. Filter Monitor 1.0.1
9. Hex-Rays Decompiler primer
10. Structure Recovery as Counter-Example Guided Abstraction Refinement
11. Controlling Windows process list, part 1
12. Telewizor, meble, ma?y fiat
13. SEH Graph
14. SMB2: 351 Packets from the Trampoline released!
15. 351 Packets from the Trampoline
16. TraceHook v0.0.2
17. Device Drivers Vulnerability Research, Avast a real case
18. Finding instructions
19. An attempt to reconstruct the call stack
20. VMware CloudBurst - VMware Guest to Host Escape Exploit
21. C++ Method Constness
22. Develop your master boot record and debug it with IDA Pro and the Bochs debugger plug
23. Code Release page
24. Viewer for driver dispatch tables
25. Binary-Auditing Solutions.
26. Recent conferences’ reports
27. DllMain and its uncovered possibilites
28. The incoming SecDay conference
29. Suspending processes in Windows, part 1
30. TraceHook v0.0.1 release
31. Hello world!
32. Process termination issues
33. Extending Total Commander with some minor functionality
34. "Client" Unit Tests(some fun ones..)Indirect RtlCreateUserThread hooking..
35. Several Common Ways That Viruses Spread
36. VMware ring3 detection (RF handling)
37. Javascript for IDA Pro
38. News
39. Sorry its taking so long on the next release of source..
40. Casts are bad
41. (In My fucked up way Of thinking...)
42. # faked Adobe PDF.SWF exploit on milw0rm
43. # weakness of PAGE_GUARD or new Windows bug (XP/Vista 32/64 SP1)
44. placing a "hotpatch" where it doesnt belong..
45. why Opcode0x90's "dll Injection shield" fails against RtlCreateUserThead
46. Pwnie Awards Nominees!!!
47. Bypassing Csrss's hold on Terminating Win32Threads..
48. Aslan (4514N) - Binary Code Integrator - Okaeri
49. PAPER: Evading network-level emulation
50. Generic unpacking paper revision
51. Kon-Boot for USB and some news
52. Some graphs
53. PAPER: Generic Unpacking of Self-modifying, Aggressive, Packed Binary Programs
54. Dynamic Data Flow Analysis via Virtual Code Integration (aka The SpiderPig case)
55. If I had a nickel for every time I had a nickel, I'd have TWO NICKELS
56. Incoming...
57. Blah
58. SpiderPig and The Childs.
59. SpiderPig Memory Tracer
60. Presenting Kon-Boot v1.0
61. # IDA-Pro steals RIP ? introduction in relative addressing
62. User-mode debugger with SoftICE UI
63. # MS DirectShow MPEG2 (msvidctl.dll) worm was fired out!
64. # IDA-Pro//BOCHSDBG plug-in bug: lack of 16bit support
65. CallOutRecaptureRoutine and the changes it made
66. # Xcon2009: passive non-resident root-kits
67. VMprotect VM_logic (in v1.8 demo)
68. # die Vista, die or why DEADDEEF is alive?
69. A snippet of time.. ;) uneditted ..
70. # IDA-Pro 5.5 has been updated, fixed ? Bochs plug-in unaligned PE bug
71. # San-Francisco - A Dream Came True
72. Native Blocks Pre-Alpha
73. Server Handle Table Funtions.
74. Ideas and concepts: behind the Sin32 Subsystem
75. Bare Bone Client
76. Ruby for Pentesters - The Dark Side I: Ragweed
77. Server Thread Recycling (Beginings..)
78. Current QuickLPC Server Implementation
79. Current QuickLPC Client
80. Function call graph plugin sample
81. My first blog post.(plans for my blog)
82. IDA Pro 5.5 and Hex-Rays 1.1 have been released!
83. psusp
84. Windows 7 RC syscalls
85. # a bomb from McAfee (a nasty one)
86. IDA Pro 5.5 goes alpha
87. VMprotect VM_logic (in v1.8 demo)
88. Matasano PFI (as seen on TV!)
89. Using CreatePipe to detect and thwart Emulating Sandboxes and AV emulators
90. EventPair Reversing, EventPairHandle as Anti-Dbg Trick
91. Decompiling floating point
92. IDA v5.4 demo
93. RtlQueryProcessHeapInformation as Anti-Dbg Trick
94. RtlQueryProcessDebugInformation as Anti-Dbg Trick
95. Found what is that "long mode segmentation"
96. Updated "Class Informer" plug-in
97. Debugger tricks: Find all probable CONTEXT records in a crash dump
98. Anti-Emulation Tricks
99. InfoSec Institute's RE Course
100. Examining kernel stacks on Vista/Srv08 using kdbgctrl -td
101. VC++ asm intrinsics
102. Ruby for Pen-Testers: Announcing Ruby Black Bag
103. Netsons killed my Website
104. DirecSound Capture With Deviare
105. Understanding the kernel address space on 32-bit Windows Vista
106. Recovering a process from a hung debugger
107. Advanced Windows Kernel Debugging with VMWare and IDA's GDB debugger
108. # I’m on my way to South Africa
109. # self-replicated processes
110. # JL/JGE Intel CPU bug as anti-reversing trick
111. # Olly Plug-ins and MS VC
112. # Olly loads Olly to bypass anti-attach tricks /* Clerk? trick */
113. # anti-attach: BaseThreadStartThunk => NO_ACCESS
114. # zombie slam
115. # Process Explorer - bloody hell of indefinite waiting bugs
116. # NtRequestWaitReplyPort abuses IDA-Pro
117. # PRNG based on REP STOS
118. # attach to me? if you can (part II)
119. # self-overwritten REP STOS/MOVS, IDA-Pro 5.4 and Ko
120. # try to attach to me? if you can!
121. Mr. Bachaalany joins Hex-Rays
122. The IDA Pro book
123. BITS used as a covert channel
124. Bochs plugin goes alpha
125. Bochs Emulator and IDA?
126. IDA Pro has 9 debugger modules
127. IDA and MIPS
128. Blackhat USA 2008
129. Apple's variant of ptrace()
130. Recon2008
131. Testing debuggers
132. From simple to complex
133. Kernel debugging with IDA
134. Bridge them all
135. # IDA-Pro 5.4: old bugs on the new streets (was: to download or to not download)
136. # RE course in Tel-Aviv
137. Playstation3 / PS3 - Harddisk encryption
138. S7 airlines is under attack!
139. # simple OllyScript for upx
140. # PatchDiff => Hex-Rays => WinDiff: how to analyze patches faster
141. # Baghdad - dead alive breakpoints
142. Class Informer IDA plug-in
143. Windows 7 syscall list
144. IDA v5.4 release is not that far away
145. Windows 7 kernel structures
146. # shell-codes analysis: where is EP?
147. x64 SEH & Explorer Suite Update
148. # FreeLibrary bug becomes a PE packers bug
149. San-Francisco - the place to meet
150. # MS VC - challenge for PE packers
151. Unpinning Imported .dll's
152. # 3 lines C-prog hurts MS VC
153. # chilly suspicions of new win32 bug
154. Malware: Unpacking Waledac
155. # dynamic TLS callbacks instead of SEH
156. # IDA-Pro and simple (E)SP hack
157. # GetProcessDEPPolicy for XP/XP SP2
158. NtSetDebugFilterState as Anti-Dbg Trick
159. # TLS callbacks w/o USER32 (part III)
160. # TLS callbacks w/o USER32 (part II)
161. # another EnableTracing() bug
162. how powerful IDA Script might be
163. # IDA-Pro EnableTracing() - how not to do
164. # XP/S2K3 fails to process TLS w/o USER32
165. IDA and TLS callbacks
166. # DS/FS is under hardware breakpoints
167. blog was moved
168. Guidelines to MFC reversing
169. IOCTL-Proxy
170. Dynamic C++ Proposal
171. Command line version of OSR's DeviceTree
172. Backdoor.Win32.UltimateDefender Reverse Engineering
173. Switch as Binary Search, Part 1
174. Switch as Binary Search, Part 0
175. Qt Internals & Reversing
176. CVE-2006-5758: better late than ever
177. Malware and initial stack pointer value
178. Shared object injection on linux/unix
179. Bagle.W IDB
180. Trojan.Zhelatin.pk
181. Hotpatching MS08-067
182. On Analysis of Client-Server Software Applications
183. Analyzing local privilege escalations in win32k
184. Exploiting Tomorrow's Internet Today: Penetration testing with IPv6
185. Can you find me now? Unlocking the Verizon Wireless xv6800 (HTC Titan) GPS
186. VbPython 1.2a
187. examples of the syllabuses
188. Using dual-mappings to evade automated unpackers
189. Interesting Kernel32 Constant
190. Analyzing Malicious PDF's
191. The Wild World of VoIP
192. RE-courses/conferences schedule
193. custom gpa spy
194. Debugger Detection Via NtSystemDebugControl
195. POP SS and Debuggers
196. Fighting Oreans' VM (code virtualizer flavour)
197. PEiD imports parsing DoS
198. Nucleus Framework
199. SoftICE and KDExtensions
200. IDA2PAT Reloaded
201. Black Hat 2008 Wrap-up
202. VMProtect, Part 0: Basics
203. Part 2: Introduction to Optimization
204. Part 1: Bytecode and IR
205. Part 3: Optimizing and Compiling
206. Inside DeleteFiber() as Anti Debug Trick
207. Something different part 3, or not quite different
208. Why hooking system services is more difficult (and dangerous) than it looks
209. Inside SetUnhandledExceptionFilter
210. Small Devices & RCE
211. IDA on iPhone
212. SymbolFinder
213. Sun VirtualBox Disassembler Explantation
214. CartellaUnicaTasse.exe Italian Malware RCE Analysis
215. Why is secure development so important?
216. pde/pte softice plugin
217. Funny coded malware
218. antisptd
219. IceProbe - SoftIce Command Tracer
220. build rule for x64 asm
221. nonintrusive tracer on x64
222. My "Unofficial" ReCon Video
223. Strong-Name Signing, AdmiralDebilitate v0.1
224. IDA Pro Development Environment
225. Control Flow Deobfuscation Part 3
226. Vmware snapshot and SSDT
227. Phoenix Protector 1.3.0.1
228. .NET Internals and Native Compiling
229. Fujitsu 3D Shock Sensor Application Reversing
230. An Introduction To .NET Reversing
231. IDA and vmread/vmwrite x64
232. Intel VT and cpuid break
233. Downloader.Win32.Small or Win32/PolyCrypt Reversing
234. #773: bug in IDA-Pro [fails to debug zero-based PE]
235. "Function String Associate" IDA Plug-in
236. # bug in Process Explorer (a gift for malware)
237. # thinking in IDA Pro - how to obtain a copy
238. # bug in Olly, Windows behavior and Peter Ferrie
239. # free IDA-Pro training
240. # turbo-import [stealth anti-api-monitors style]
241. # old CD 03 bug in windows
242. # other solutions: how to load two or more files into the same IDA-Pro database
243. # how to load two or more files into single IDA Pro database
244. # Syser causes BSOD
245. # eternal life, ammo, scores in games
246. .NET Internals and Code Injection
247. D3DLookingGlass v0.1
248. DisasMSIL and CFF Explorer
249. Retsaot is Toaster, Reversed: Quick 'n Dirty Firmware Reversing
250. A brief discussion of Windows Vista’s IE Protected Mode (and user/process level secur

vBulletin® v3.8.2, Copyright ©2000-2009, Jelsoft Enterprises Ltd.