hey everyone, I write this post to introduce my new blog here at http://x86overflow.blogspot.com/ ; I only post stuff there rarely though.
hey everyone, I write this post to introduce my new blog here at http://x86overflow.blogspot.com/ ; I only post stuff there rarely though.
I’ve never been that good at Math and I guess my skills are just average, however, I happened to come across this book on number theory at home and happened to glance through it. I’ve spent around 4 years with programming and computers, I guess I just wanted to be away from it all for [...]
This is because different sections have different rwx attributes, hence its not possible for a page to span multiple sections.
For no particular reason I started glancing at the py.test framework today and I noticed something that I like. In unittest2, suppose you have a set of statements that might lead to an exception being raised you have to write a dummy function and then pass it to assertRaises. At least, I couldn’t think of [...]
DLL hijacking, this ones a nice read. http://isc.sans.org/diary.html?storyid=9445 A few points :- The most important DLLs are listed in the _HKLM/System/CurrentControlSet/Control/Session Manager/KnownDLLs_ registry key. These DLLs are usually listed in the directory specified as _DllDirectory_, which is usually _%SystemRoot%/system32_ SafeDllSearchMode was added as a precautionary measure to take care of the mistake of adding “.” [...]
I have been using buzz a lot lately, mainly because of two reasons:- 1. Im pretty sure people check their buzz updates more frequently than my blog, so its useful to get feedback. 2. Its a lot lot more easier. And the thought that there’s a python-buzz API is reassuring because I can categorize stuff [...]
Pretty damn cool, but you need CPU support for this as the addresses are stored in the CPU debug registers(there are 4 registers, hence there is a limit to the number of hw breakpoints you can set). But unlike s/w breakpoints you can set a h/w breakpoint to break on :- 1. execution(the usual kind) [...]
I realize that I havent blogged in a long time and I’ve been onto reverse engineering and its interesting as hell. An interesting piece of information is regarding how debuggers work with breakpoints. When you set a breakpoint, the instruction at the address in replaced by a INT 3(0xCC) instruction by the debugger(and the debugger [...]
Well, this sure was a pleasant surprise!
Its been a hectic week with all the exams and the final year stuff and i guess its going to stay that way for a while. Need to go to Chennai for the visa this coming Tuesday. It’ll be another busy week there I guess. Still waiting for a reply to the mail I sent [...]
Ok, so you can find the codebase here at https://bitbucket.org/zubin71/honeyftp. If you wish to clone it, just do:- $ hg clone https://bitbucket.org/zubin71/honeyftp You need to create a mysql database by the name of honeyftp, and have a LIST database. Also, please note that on my machine(an OSX), mysql treats tablenames “LIST”, “List”, and “list” as [...]
Its been a long day; barely slept yesterday and woke up really early today. InCTF went according to plan, however I was disappointed that very few teams actually managed to attack and get their services running. This was something we did not expect; there is nothing worse than writing a service which very few people [...]
Well, we’re having a night out at the ARL today trying to integrate all the services into the InCTF image. So far, so good. Avinash went first and integrated his service, then went on to do the same. I had some problems when I used the same codebase and it took a while to figure [...]
We are happy to announce that the preparations for R3 are going at a steady pace and that most of the services for R3 are done. Hope you all have fun competing. The test image has been sent and most of the teams were able to connect to the server; Avinash and Varrun are currently [...]
Hmm, why wont this byte budge!!? :/ Wonder what I’m doing wrong.
Smashthestack level06 has been interesting and challenging so far, and I feel that im really close to the solution. I think I’ve managed to solve a portion of it but there seems to be a problem I dont fully understand. Ive managed to overwrite the eip with an address where the shellcode is present. And [...]
I just sent a proposal for working on the HoneyFTP for the rest of the summer and I got suggestions on implementing similar functionality on Dionaea instead. After giving it some thought, I realized that I would be contributing to software in a better manner by developing the FTP support in Dionaea rather than create [...]
I feel that upon creating a honeypot there should be two design goals. 1. The honeypot should be tested, and still insecure; but only the ways the developers intend it to be. Stating that a honeypot shouldn’t have any bugs would be like stating that software, in general shouldn’t have bugs; its simply not possible. [...]
Loads of solutions pouring in for InCTF R1. But very few have managed to write exploit codes for buffer overflows. I’m waitingggggg…… !!
I just came across this site which has loads of quotes listed out; I’ve always loved rhetorics, so I went through a lot of them. Here are my favorites :- Sometimes good things fall apart so that better things can fall together. Never regret. If its good, its wonderful. If its bad, its experience. There [...]
Just read another chapter of “The Mythical Man Month”. All this while I had the notion that essays in SE would just be a lot of boring theory, but I find this book particularly interesting, as it lists out almost every mistake I feel I would end up making, if I had to manage a [...]
I found the following lines from the book “The Mythical Man Month” really thought provoking. Most software projects fail due to lack of calender time. One reason for this is that our estimating techniques(for time required) fallaciously confuse effort with progress, hiding the assumption that men and months are interchangable All programmers are optimists. Perhaps [...]
Here are the new dates which have been put up(as the deadline for the registration had to be moved a bit). R1 has been changed to Saturday, March 13 2011. R2 has been changed to Saturday, March 20 2011. R3 has been changed to Saturday, April 2 2011.
Well, the individual registration count is not tallying with the number of the team registrations so we think you might just need a little more time organizing a team. The last date for the registration has been moved over to the 5th of March 2011. Have fun people, take your time and register as a [...]
Well, looking at the registration stats for this years InCTF, it seems that people are all inclined towards participating alone rather than as a team. As of 19th February 2011 we have about 355 users and 43 teams registered. Please note that we will not allow individual participation. We do this for two reasons mainly [...]
Not having attended placements(by choice) i couldn’t really relate to the posts my friends put on FB saying stuff like “this is the next big step for me” and “im having to choose btw companies and this is so tough”. They were just being their usual melodramatic selves, I assumed. Half of the class is [...]
is simply amazing. Two seasons down, two more to go.
Well, I tried to stop writing technical posts here and post them on another blog but this is hard, considering the fact that I spend most of my time working on either InCTF or minix3 filesystem. If this level of work load keeps up, my last semester is gonna suck big time. Better find a [...]