Hello again loyal readers. I’ve had a lot of ideas rattling around in my head lately. Malware related things. For example, what if someone used Gopher for C&C? Who the hell uses gopher anymore? The API’s for handling gopher, while deprecated, are still around. Though you would probably have to load it from an older […]
Hello again loyal readers! I have a treat for you. I encountered an exploit kit while doing my malware thing and decided to try and get a better idea of what is going on start to finish. I Watched a machine get exploited and fired up WireShark to watch: GET http://68.178.166.11/2b01554de28f018745855a41166494db/lately-duplicate.php HTTP/1.1 Accept: image/gif, image/x-xbitmap, […]
Hello again people! I’ve been busy lately with my awesome job giving me free time to code things up. I’ve constructed a raw TCP packet builder in C# for the hell of it. I coded this up using winpcap to test a topic I saw at Defcon this year. It was said a vulnerability exists […]