Browsing All Posts filed under »reversing«

ReCon 2010

September 16, 2010 by

1

For years, I have always wanted to attend ReCon. Since about 2005 or so, I’ve read all the slides and papers that came out of ReCon. It is one of the few conferences I really ever cared to follow. This year, the first time I was able to attend, I was actually invited to speak […]

Blackhat Vegas 2010 (PhotoJournal)

September 16, 2010 by

0

At the very last minute (partly due to some conversations on Twitter). Beans was invited to BlackHat Vegas 2010 to speak as an alternate. Having not officially applied to the CFP, it was a huge honor to be considered in this way. (Having already given the talk at Recon 2010 and Syscan helped, along with the […]

Disassembling BlackBerry apps, take 2

February 19, 2009 by

51

A couple people brought to my attention that the coddec patch, well, doesn’t work.  And they were right!   I just committed a new  patch which should work.  Also, provided here are hopefully some instructions to get this working: Download coddec.rar from wherever Extract into some directory and cd into the directory patch -p1 < coddec.patch […]

Disassembling Version 6 BlackBerry apps

January 7, 2009 by

13

Now and again I have to disassemble BlackBerry apps.  BlackBerries pretty much run all Java code.  You might think this would mean everything was .class files and you could jad everything, but this is not the case.  Everything gets compiled to “.cod” files, a file format I have found very little information about on the […]

reversing the ms08-067 patch…

October 23, 2008 by

1

We are gonna jump right in here: First, let’s download patches. MS has supplied patches for 2K. Since 2K is the older, less featureful of any of the operating systems, we should download those patches in order to gain insight into the vulnerability. First, I grabbed the patch from http://www.microsoft.com/technet/security/bulletin/ms08-067.mspx. I noted that it “replaced” […]