OK, here’s a thought I came up with when having my wee dram in front of the fireplace the other day. We’ve come to learn to live with the day to day threat of DDoS attacks. Each of which seem to grow exponentially in magnitude, launched by literally anyone having some basic programming skills, time and sometimes some resources. The collateral damage is also usually unintended and huge. But what if we could stop many these things earlier?
As we all know, it is always a matter of resources (read botnet zombies etc.) in order to fill the bandwidth of the intended target(s), either by plugging the architectural bottlenecks, hitting the Achilles heel (read DNS infrastructure and similar) or by hitting the target directly.
Continue reading A thought on DDoS Prevention
In March 2011 Google acquired the company Zynamics, the developer of the tools BinDiff and BinNavi. These two tools were thus assimilated by Google, perhaps never to be seen again. However almost on the day 5 years later, BinDiff was release for free to the public! Soon to be followed by BinNavi which was release both for free and open source. Great news!
BinDiff (v4.20 when writing this post) is released both for Windows and Linux. The packages are released as .deb packages both for 32bit and 64bit systems, but no .rpm. The support pages said that one is to contact email@example.com when in need for other packages. They’ve now changed the page(!) telling you that the may not answer and only decide on case by case whether to answer or not. I never got an answer. But hey! Its no problem…
Continue reading Install BinDiff on Fedora
There are many books on SRE – Software Reverse Egineering, however, there are less books on hardware reverse engineering, especially in the area of electronics. However there is an interesting book concerning PCBs (Printed Circuit Boards) and how to reverse engineer them – The Art of PCB Reverse Engineering by Ng Keng Tiong.
Continue reading Book Review – The Art of PCB Reverse Engineering
KeyPatch by Keystone is a rather powerful tool when it comes to reverse engineering and patching binaries in particular. It lets you write the mnemonics/assembly directly instead of the opcodes. I know it makes my life way easier when patching!
It transparently supports many different architectures such as:
- X86 (16/32/64bit)
- ARM (32/64bit)
As I for many reasons switched from a debian based package system to Fedora, an RPM based package system a while ago I also left the mainstream community. Many guides are .deb focused which in most cases is not very compatible with .rpm based distros when it comes to package names, quirks, solutions etc.
This small guide focuses on building the Keystone library used by KeyPatch from source on Fedora gathering some of the scattered information I found on the subject.
Continue reading Build IDA Pro KeyPatch for Fedora Linux
Ambition was high, oceans of time available it seemed…Then reality came knocking on the door, as usual and the site became less and less maintained with no new content and so forth. That said it doesn’t mean that nothing has happened. It just hasn’t been added to the site. I’ll try to change that and make the site more alive. Every entry does not have to have hours of work behind them and so forth. And to make life easier, I’ve changed the framework too.
Things may be a bit shaky the next couple of weeks regarding contents, visual representation, availability or similar.