.I've recently been interested in the first 2 seconds that occur when you are faced with a new binary. You may think many things before you ever see a binary, but here are things you only feel when you first look at it. You get this initial reaction - it says, "I can break this thing" - and I really want to know what makes people think that. What is it? In that first glimpse of IDA disassembly, what tells you that? I think you can tell things about people's code. It's a joke around my company - we actually try to follow individual coders around -they make mistakes in one place, they will make it again somewhere else. In once case (without mentioning names) we followed this one guy from one fortune 500 to another fortune 500 - and he kept writing buffer overflow bugs into cell fones. Is it that - a 'gist' of someone's coding mistakes, or style? Or, is it more than that? - Is there something fundamental that you notice? Or, is it just that the code is buggy or not well structured?
![[+] expand](/imagery/files/soysauce_blueprint.gif){kind=link}