•June 26, 2009 •
Leave a Comment

SyScan
Alfred and I we’ll be giving our talk “Persistent BIOS Infection” at SyScan ‘09, Singapore. This time with some added content and of course, with our multiple cOOl demos, including the one with the dismembered real box (i hope not to have problems when traveling with the hardware).
If someone wants to meet and go out for a beer or something i’ll be glad. Just drop me some line here or at als.alsx@gmail.com
c ya there!
Posted in Main()
Tags: BIOS, bios rootkit, persistent bios infeccion, singapore, syscan
•June 3, 2009 •
Leave a Comment

Poor little CUPS… I feel bad for him.
I swear, i wasn’t looking for bugs in it (not for *new* bugs at least
). It just crashed in my face…
At the beginning i didn’t give so much importance to it but CUPS is shipped as the default printing service for OS X and almost all Linux distributions. Besides, it’s a pre-auth vulnerability so… i think it was worth to release an advisory for it – with the appropiated PoC and technical info, as usual -
So, here you have it. have phun. :p
Continue reading ‘Apple CUPS IPP_TAG_UNSUPPORTED Handling null pointer Vulnerability’
Posted in Advisories
Tags: Apple CUPS, Core Security, exploit, PoC, pre authentication, Vulnerability
•April 22, 2009 •
Leave a Comment

HotFuzz
Mario Vilas, a very good friend of mine (and coworker) has released a very cool python module that allows developers to quickly code instrumentation scripts in Python under a Windows environment.
I’ve been folowing this project very close, testing some pre-releases, and i must say that i cant wait to fuzz some stuff with this final version.
Continue reading ‘Python winappdbg 1.0 is Out!’
Posted in Main()
Tags: ctypes, debugger, fuzzing, win32, winappdbg
•March 23, 2009 •
7 Comments
•October 5, 2008 •
Leave a Comment
•July 27, 2008 •
Leave a Comment
Hey hey. How are you ppl?
I’ve been working a lot with OS X lately. It looks very similar to any Unix-like OS. But, of course, it has its own implications.
Basically im writing this post to have some kind of sticky with the things i’ve discovered, read on some blog or seen in some presentation. So, i’ll keep this post ‘in progress’ adding the stuff that i think will be useful to develop reliable exploits.
Continue reading ‘Exploiting in ‘OS X’ City.’
Posted in Main()
Tags: heap, leopard, os x, ProPolice, Quicktime, security, stack, tiger