Part 2 of Heap Exploitation series: Understanding the Glibc Heap: Free, Bins, Tcache https://azeria-labs.com/heap-exploitation-part-2-glibc-heap-free-bins/ #exploit #dukeBarman

Migrated IDA Pro FindCrypt plugin to Ghidra https://github.com/d3v1l401/FindCrypt-Ghidra #ghidra #reverse #dukeBarman

Hackathon 2019 Summary https://binary.ninja/2019/04/01/hackathon-2019-summary.html Results: https://github.com/Vector35/binaryninja-api/tree/dev/python/examples #binaryninja #reverse #dukeBarman

A few Ghidra tips for IDA users, part 0 - automatic comments for API call parameters https://isc.sans.edu/forums/diary/A+few+Ghidra+tips+for+IDA+users+part+0+automatic+comments+for+API+call+parameters/24806/ #ghidra #reverse #dukeBarman

Source for GHIDRA was released https://github.com/NationalSecurityAgency/ghidra #ghidra #reverse

AZM - Live ARM Assembler and Syntax Checker http://azm.azerialabs.com #arm #dukeBarman

r2frida v3.4.0 was released https://github.com/nowsecure/r2frida/releases/tag/v3.4.0 #radare2 #frida #dukeBarman

Ghidra Plugin Development for Vulnerability Research - Part-1 https://www.somersetrecon.com/blog/2019/ghidra-plugin-development-for-vulnerability-research-part-1 #ghidra #dukeBarman

Pwn2Own 2018: Safari RCE, sandbox escape + LPE to kernel for macOS 10.13.3 full exploit chain details

https://github.com/saelo/pwn2own2018

#re #expdev #rce #lpe #macos #browser #pwn2own #darw1n

User-Friendly Fuzzing with Sienna Locomotive https://blog.trailofbits.com/2019/04/08/user-friendly-fuzzing-with-sienna-locomotive/ #fuzzing #dukeBarman

Videos from OffensiveCon 2019 https://www.youtube.com/channel/UCMNvAtT4ak2azKNk6UlB1QQ/featured #videos #conference #dukeBarman

QScripts – IDA Scripting productivity tool http://0xeb.net/2019/04/ida-qscripts/ #ida #reverse #dukeBarman

Script to quickly hook natives call to JNI in Android

https://github.com/Areizen/JNI-Frida-Hook

#re #hook #android #mobile #darw1n

Chrome 1-day RCE PoC (Array.prototype.map)

https://blog.exodusintel.com/2019/04/03/a-window-of-opportunity/

#re #expdev #rce #1day #browser #darw1n

Сustom shellcode compiler for Binary Ninja https://scc.binary.ninja/index.html #binaryninja #exploit #dukeBarman

Congratulations on the International Day of Human Space!

Modern Binary Exploitation Writeups
0x01: https://medium.com/bugbountywriteup/binary-exploitation-5fe810db3ed4
0x02: https://medium.com/bugbountywriteup/modern-binary-exploitation-writeups-ii-62c092f7f389
0x03: https://medium.com/bugbountywriteup/binary-writeup-0x03-9a9546711ef2
0x04: https://medium.com/bugbountywriteup/binary-writeup-0x04-baeed833ddf

#radare2 #CTF #dukeBarman

A research kernel and hypervisor attempting to get fully deterministic emulation with minimum performance cost https://github.com/gamozolabs/orange_slice #fuzzing #hypervisor #dukeBarman

COM Hijacking technique has a simple theoretical basis, similar to the DLL Hijacking one: What does it happen when an application searches for a non-existent COM object on the computer where it is being executed? Or when such object exists but it cannot be found on the registry key where it was searched? An attacker may create it by means of altered information. For instance, a path leading the victim to a DLL created by the attacker instead of to the searched one.

https://blog.en.elevenpaths.com/2019/04/hijacking-research-smartscreen.html

#malware #hijacking #darw1n

AFL-unicorn: What is it and how to use it? https://tthtlc.wordpress.com/2019/03/16/afl-unicorn-what-is-it-and-how-to-use-it/ #fuzzing #dukeBarman

Reversing w/o reversing – how to become Alex in practice, Part 3 http://www.hexacorn.com/blog/2019/04/14/reversing-w-o-reversing-how-to-become-alex-in-practice-part-3/ #newbie #reverse #dukeBarman