Howdy ho! This is one of those interim posts where I’m not posting something cool, but rather something that’s bothering me. You know, like a blog post? Anyways, I downloaded Uber the other day and its pretty cool and handy. The only qualm I had was with all the permissions it asked for. You can […]
Hello fellow readers! You all are probably wondering what the hell I’ve been up to this past month. Lot’s of stuff. This post is all over the place with code and slides and malware and general wackiness. Rather than spreading it out over several blog posts, I decided to just get it all over with […]
Greetings and salutations fellow readers. Recently I’ve had to step into the awful world of kernel debugging. When malware drops a rootkit and conventional userland debugging falls short, you have to step into ring 0. Unfortunately, options are rather limited when it comes to decent ring0 debugging on windows. What’s that one debugger everyone’s heard […]
This is how I spent my Friday night – I was sipping some delicious liquor and thinking about how crappy XOR encryption is unless the key length is high. Then I thought to myself “What if there was a dynamic xor key for each shift?”. Then I thought “I really should be out meeting the […]
Back for part 2 are we? Let’s get this show on the road. We’ve seen how awful the first piece of malware was in terms of how it was thrown together in all but 10 minutes, but you aint seen nothing yet. The next one actually embeds passwords inside and even email addresses. After that, […]
Howdy! I made some changes to my break point script to make it more modular and accept arguments and stuff. I normally steer clear of python due to its agonizingly strict syntax, but I suffered through it for you. I use this script every single day when I first load a piece of malware into […]
Howdy all! It’s been a dog’s age. I’ve been busy with work and personal things. I enjoyed a brief 3 month relationship only to return to a life of loneliness. For now anyways. CactusCon went well. Had a nice turn out for my work shop. Hopefully the attendees learned something as I tried to make […]
Salutations fellow hackers and crackers alike! Over the past few months I’ve been off and on writing a remote key logger. Why? Just to keep sharp I guess. How can we hope to stay on top of malware trends if we don’t attempt to think like the enemy? The fine line between white hat and […]
Howdy all! Today I have, instead of malware and hax, something a little different. The app makes use of simple stream ciphers to embed any other file I want into any picture I want WITHOUT breaking the original pic. Recall from one of my other posts that they(malware writers) did utilize a form of steganography, […]
Hello all! Been a long week. Lot’s of things to do, no time to do them. I did however get this done though: Just wanted a tool that I could use to go after MySQL, MSSQL, and Oracle in a timely, multithreaded manner. I haven’t had a chance to fully test it yet, so it’s […]