Category Archives: Security

Recon 2010: Intro to Embedded Reverse Engineering for PC reversers

In July I had the honor to speak at the Recon conference in Montreal, Canada. It was my first conference but I really liked the experience. I hope I’ll be able to attend it in future. The presentations were recorded … Continue reading

Posted in Security | 7 Comments

PDF file loader to extract and analyse shellcode

One of the new features in IDA Pro 5.6 is the possibility to write file loaders using scripts such as IDC or Python. To illustrate this new feature, we are going to explain how to write a file loader using … Continue reading

Posted in IDA Pro, Security | 7 Comments

Casts are bad

Halvar and Dennis Elser recently blogged about a serious vulnerability in the ATL libraries. A few days ago, Microsoft released an emergency “out-of-band” patch. Yes, the bug was that nasty, and since it is in a library, many MS Windows … Continue reading

Posted in Programming, Security | 5 Comments

Blackhat USA 2008

Sometimes names just do not reflect the nature of things. Sometimes it is our fault to attribute a wrong meaning to names. I do not know which of the above holds for Windows ASLR. After Alex Sotirov and Mark Dowd’s … Continue reading

Posted in Security | 2 Comments

MRXDAV.SYS and Hex-Rays Decompiler

I wanted to present you a new plugin today. It was about switch idioms (jump tables). I spent a few hours trying to find a problematic x86 sample file but could not locate anything impressive. All jump tables were nicely … Continue reading

Posted in Security | 1 Comment


What happened to OpenRCE, does anyone know? It would be a pity to lose such a nice resource. This news is not a bright one neither but I hope that the explanation for openrce is purely technical.

Posted in Security | 2 Comments

ZERT patch

I think you have noticed that the site was down for a while. My web hoster again played the same trick: shut down the site with no notice. I’m leaving them. While I was busy with all this stuff, the … Continue reading

Posted in Security | Comments Off

IE6 vulnerabilty patch

If you are one of unfortunate users still forced to use the Internet Explorer, consider installing this temporary patch from Determina: Just do not forget to reboot your computer after applying the patch, the installer seems not to insist … Continue reading

Posted in Security | 1 Comment

On uninitialized variables

Quite busy week, sorry for being silent. I wanted to talk about an annoyance I discovered with all my C/C++ compilers. Here is quite interesting presentation from Halvar Flake: Attacks on uninitialized local variables After reading it I wanted to … Continue reading

Posted in Programming, Security | 16 Comments


Each year in Brussels, Belgium there is a conference called FOSDEM. It is organized on the last weekend of February. There seem to be some interesting talks about security and program developement this year. The development track is almost fully … Continue reading

Posted in Security | Comments Off