In July 2011, Beans gave a talk at ReCon in Montreal, CA entitled “Hardware Hacking for Software People“. This year ReCon broke away from its more humble conference venue roots, took corporate sponsorship, and upgraded the venue to a MUCH nicer hotel. (After last year’s debacles, I think Hugo and Dave decided it was just… [Read more…]
For most of my career as a software developer/security researcher I’ve romanticized ‘hardware hacking’. In my late teens and early twenties as I was learning about software development and software security I would occasionally buy Nuts and Volts from Microcenter and read Karl Lunt‘s Amateur Robotics column. Having devoured William Gibson‘s oeuvre in my late… [Read more…]
Earlier this summer Beans attended the weeklong SMT Solver Summer school held at MIT campus in Boston, Mass. Over the last few years having seen some of the presentations by Pablo Sole on DEPLIB, blogposts by Sean Heelan, and having messed around a little bit with the REIL in BinNavi we were really curious to get a… [Read more…]
In 2011, I (Stephen A. Ridley) don’t plan on attending too many conferences that require far away travel for many reasons. 1) My work isn’t as interesting anymore ;-( and 2) I can’t travel as easily with Sammiches. With Boston being in the northeast (close to us) we decided we’d try SourceBoston out for the… [Read more…]
So let’s say that you’re sitting down to a project (perhaps a malware analysis gig, fuzzing something, or just reversing) and you realize that most of the target is implemented in COM/ActiveX Objects. What would really help you starting off on this project is a human readable version (IDL) of the TypeLib associated with the… [Read more…]
For years, I have always wanted to attend ReCon. Since about 2005 or so, I’ve read all the slides and papers that came out of ReCon. It is one of the few conferences I really ever cared to follow. This year, the first time I was able to attend, I was actually invited to speak… [Read more…]
At the very last minute (partly due to some conversations on Twitter). Beans was invited to BlackHat Vegas 2010 to speak as an alternate. Having not officially applied to the CFP, it was a huge honor to be considered in this way. (Having already given the talk at Recon 2010 and Syscan helped, along with the… [Read more…]
February 19, 2009 by slawlerguy
A couple people brought to my attention that the coddec patch, well, doesn’t work. And they were right! I just committed a new patch which should work. Also, provided here are hopefully some instructions to get this working: Download coddec.rar from wherever Extract into some directory and cd into the directory patch -p1 < coddec.patch… [Read more…]
January 7, 2009 by slawlerguy
Now and again I have to disassemble BlackBerry apps. BlackBerries pretty much run all Java code. You might think this would mean everything was .class files and you could jad everything, but this is not the case. Everything gets compiled to “.cod” files, a file format I have found very little information about on the… [Read more…]
October 23, 2008 by slawlerguy
Comments Off
We are gonna jump right in here: First, let’s download patches. MS has supplied patches for 2K. Since 2K is the older, less featureful of any of the operating systems, we should download those patches in order to gain insight into the vulnerability. First, I grabbed the patch from http://www.microsoft.com/technet/security/bulletin/ms08-067.mspx. I noted that it “replaced”… [Read more…]
November 28, 2011 by s7ephen
0