-
Notifications
You must be signed in to change notification settings - Fork 1
/
archives.html
221 lines (207 loc) · 9.69 KB
/
archives.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="utf-8">
<title>Diary of a reverse-engineer</title>
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<meta name="description" content="">
<meta name="author" content="Axel '0vercl0k' Souchet">
<link rel="stylesheet" href="./theme/css/bootstrap.min.css" type="text/css" />
<style type="text/css">
body {
padding-top: 60px;
padding-bottom: 40px;
}
.sidebar-nav {
padding: 9px 0;
}
.tag-1 {
font-size: 13pt;
}
.tag-2 {
font-size: 10pt;
}
.tag-2 {
font-size: 8pt;
}
.tag-4 {
font-size: 6pt;
}
</style>
<link href="./theme/css/bootstrap-responsive.min.css" rel="stylesheet" />
<link href="./theme/css/font-awesome.css" rel="stylesheet" />
<link href="./theme/css/pygments.css" rel="stylesheet" />
<!--[if lt IE 9]>
<script src="//html5shim.googlecode.com/svn/trunk/html5.js"></script>
<![endif]-->
<link href="./feeds/atom.xml" type="application/atom+xml" rel="alternate" title="Diary of a reverse-engineer ATOM Feed" />
<link href="./feeds/rss.xml" type="application/atom+xml" rel="alternate" title="Diary of a reverse-engineer RSS Feed" />
<!-- Global site tag (gtag.js) - Google Analytics -->
<script async src='https://www.googletagmanager.com/gtag/js?id=G-MRPDMQ259W'></script>
<script>
window.dataLayer = window.dataLayer || [];
function gtag(){dataLayer.push(arguments);}
gtag('js', new Date());
gtag('config', 'G-MRPDMQ259W');
</script>
</head>
<body>
<div class="navbar navbar-fixed-top">
<div class="navbar-inner">
<div class="container-fluid">
<a class="btn btn-navbar" data-toggle="collapse" data-target=".nav-collapse">
<span class="icon-bar"></span>
<span class="icon-bar"></span>
<span class="icon-bar"></span>
</a>
<a class="brand" href="./index.html">Diary of a reverse-engineer </a>
<div class="nav-collapse">
<ul class="nav">
<ul class="nav">
<li><a href="./archives.html"><i class="icon-th-list"></i>Archives</a></li>
</ul>
<li >
<a href="./category/debugging.html">
<i class="icon-folder-open icon-large"></i>debugging
</a>
</li>
<li >
<a href="./category/exploitation.html">
<i class="icon-folder-open icon-large"></i>exploitation
</a>
</li>
<li >
<a href="./category/misc.html">
<i class="icon-folder-open icon-large"></i>misc
</a>
</li>
<li >
<a href="./category/obfuscation.html">
<i class="icon-folder-open icon-large"></i>obfuscation
</a>
</li>
<li >
<a href="./category/reverse-engineering.html">
<i class="icon-folder-open icon-large"></i>reverse-engineering
</a>
</li>
<li><a href="./pages/about.html">About</a></li>
<li><a href="./pages/presentations.html">Presentations</a></li>
</ul>
</div><!--/.nav-collapse -->
</div>
</div>
</div>
<div class="container-fluid">
<div class="row">
<div class="span9" id="content">
<section id="content">
<h1>Archives</h1>
<dl>
<dt>Fri 05 May 2023</dt>
<dd><a href='blog/2023/05/05/competing-in-pwn2own-ics-2022-miami-exploiting-a-zero-click-remote-memory-corruption-in-iconics-genesis64/'>Competing in Pwn2Own ICS 2022 Miami: Exploiting a zero click remote memory corruption in ICONICS Genesis64</a></dd>
<br/>
<dt>Sat 11 June 2022</dt>
<dd><a href='blog/2022/06/11/pwn2own-2021-canon-imageclass-mf644cdw-writeup/'>Pwn2Own 2021 Canon ImageCLASS MF644Cdw writeup</a></dd>
<br/>
<dt>Sat 26 March 2022</dt>
<dd><a href='blog/2022/03/26/competing-in-pwn2own-2021-austin-icarus-at-the-zenith/'>Competing in Pwn2Own 2021 Austin: Icarus at the Zenith</a></dd>
<br/>
<dt>Thu 15 July 2021</dt>
<dd><a href='blog/2021/07/15/building-a-new-snapshot-fuzzer-fuzzing-ida/'>Building a new snapshot fuzzer & fuzzing IDA</a></dd>
<br/>
<dt>Thu 15 April 2021</dt>
<dd><a href='blog/2021/04/15/reverse-engineering-tcpipsys-mechanics-of-a-packet-of-the-death-cve-2021-24086/'>Reverse-engineering tcpip.sys: mechanics of a packet of the death (CVE-2021-24086)</a></dd>
<br/>
<dt>Tue 17 November 2020</dt>
<dd><a href='blog/2020/11/17/modern-attacks-on-the-chrome-browser-optimizations-and-deoptimizations/'>Modern attacks on the Chrome browser : optimizations and deoptimizations</a></dd>
<br/>
<dt>Mon 17 June 2019</dt>
<dd><a href='blog/2019/06/17/a-journey-into-ionmonkey-root-causing-cve-2019-9810/'>A journey into IonMonkey: root-causing CVE-2019-9810.</a></dd>
<br/>
<dt>Thu 09 May 2019</dt>
<dd><a href='blog/2019/05/09/circumventing-chromes-hardening-of-typer-bugs/'>Circumventing Chrome's hardening of typer bugs</a></dd>
<br/>
<dt>Mon 28 January 2019</dt>
<dd><a href='blog/2019/01/28/introduction-to-turbofan/'>Introduction to TurboFan</a></dd>
<br/>
<dt>Mon 19 November 2018</dt>
<dd><a href='blog/2018/11/19/introduction-to-spidermonkey-exploitation/'>Introduction to SpiderMonkey exploitation.</a></dd>
<br/>
<dt>Sat 14 July 2018</dt>
<dd><a href='blog/2018/07/14/cve-2017-2446-or-jscjsglobalobjectishavingabadtime/'>CVE-2017-2446 or JSC::JSGlobalObject::isHavingABadTime.</a></dd>
<br/>
<dt>Thu 17 May 2018</dt>
<dd><a href='blog/2018/05/17/breaking-ledgerctfs-aes-white-box-challenge/'>Breaking ledgerctf's AES white-box challenge</a></dd>
<br/>
<dt>Sun 11 March 2018</dt>
<dd><a href='blog/2018/03/11/bevx-challenge-on-the-operation-table/'>beVX challenge on the operation table</a></dd>
<br/>
<dt>Fri 01 December 2017</dt>
<dd><a href='blog/2017/12/01/debugger-data-model/'>Debugger data model, Javascript & x64 exception handling</a></dd>
<br/>
<dt>Sat 05 August 2017</dt>
<dd><a href='blog/2017/08/05/binary-rewriting-with-syzygy/'>Binary rewriting with syzygy, Pt. I</a></dd>
<br/>
<dt>Wed 21 December 2016</dt>
<dd><a href='blog/2016/12/21/happy-unikernels/'>happy unikernels</a></dd>
<br/>
<dt>Sun 27 November 2016</dt>
<dd><a href='blog/2016/11/27/clang-and-passes/'>Token capture via an llvm-based analysis pass</a></dd>
<br/>
<dt>Tue 18 August 2015</dt>
<dd><a href='blog/2015/08/18/keygenning-with-klee/'>Keygenning with KLEE</a></dd>
<br/>
<dt>Sun 08 February 2015</dt>
<dd><a href='blog/2015/02/08/spotlight-on-an-unprotected-aes128-whitebox-implementation/'>Spotlight on an unprotected AES128 white-box implementation</a></dd>
<br/>
<dt>Sat 11 October 2014</dt>
<dd><a href='blog/2014/10/11/taiming-a-wild-nanomite-protected-mips-binary-with-symbolic-execution-no-such-crackme/'>Taming a wild nanomite-protected MIPS binary with symbolic execution: No Such Crackme</a></dd>
<br/>
<dt>Sat 06 September 2014</dt>
<dd><a href='blog/2014/09/06/dissection-of-quarkslabs-2014-security-challenge/'>Dissection of Quarkslab's 2014 security challenge</a></dd>
<br/>
<dt>Wed 30 April 2014</dt>
<dd><a href='blog/2014/04/30/corrupting-arm-evt/'>Corrupting the ARM Exception Vector Table</a></dd>
<br/>
<dt>Thu 17 April 2014</dt>
<dd><a href='blog/2014/04/17/deep-dive-into-pythons-vm-story-of-load_const-bug/'>Deep dive into Python's VM: Story of LOAD_CONST bug</a></dd>
<br/>
<dt>Tue 11 March 2014</dt>
<dd><a href='blog/2014/03/11/first-dip-into-the-kernel-pool-ms10-058/'>First dip into the kernel pool : MS10-058</a></dd>
<br/>
<dt>Sat 12 October 2013</dt>
<dd><a href='blog/2013/10/12/having-a-look-at-the-windows-userkernel-exceptions-dispatcher/'>Having a look at the Windows' User/Kernel exceptions dispatcher</a></dd>
<br/>
<dt>Mon 16 September 2013</dt>
<dd><a href='blog/2013/09/16/breaking-kryptonites-obfuscation-with-symbolic-execution/'>Breaking Kryptonite's obfuscation: a static analysis approach relying on symbolic execution</a></dd>
<br/>
<dt>Mon 09 September 2013</dt>
<dd><a href='blog/2013/09/09/pinpointing-heap-related-issues-ollydbg2-off-by-one-story/'>Pinpointing heap-related issues: OllyDbg2 off-by-one story</a></dd>
<br/>
<dt>Sat 31 August 2013</dt>
<dd><a href='blog/2013/08/31/some-thoughts-about-code-coverage-measurement-with-pin/'>Some thoughts about code-coverage measurement with Pin</a></dd>
<br/>
<dt>Sat 24 August 2013</dt>
<dd><a href='blog/2013/08/24/regular-expressions-obfuscation-under-the-microscope/'>Regular expressions obfuscation under the microscope</a></dd>
<br/>
</dl>
</section>
</div><!--/span-->
</div><!--/row-->
<hr>
<footer style='background-color:#00000000'>
<center>
<address id="about">
Proudly powered by <a href="http://pelican.notmyidea.org/">Pelican <i class="icon-external-link"></i></a>,
which takes great advantage of <a href="http://python.org">Python <i class="icon-external-link"></i></a>.
</address><!-- /#about -->
<p>The theme is from <a href="http://twitter.github.com/bootstrap/">Bootstrap from Twitter <i class="icon-external-link"></i></a>,
and <a href="http://fortawesome.github.com/Font-Awesome/">Font-Awesome <i class="icon-external-link"></i></a>, thanks!</p>
</center>
</footer>
</div><!--/.fluid-container-->
<script src="./theme/js/jquery-1.7.2.min.js"></script>
<script src="./theme/js/bootstrap.min.js"></script>
</body>
</html>