Uninformed 6
 Ero Carrera (ero) <ero carrera gmailcom> |
Sunday, January 21 2007 22:30.00 CST |
The latest Uninformed issue makes for a good read.
Exploiting 802.11 Wireless Driver Vulnerabilities on Windows is truly interesting. Considering how highly-sensitive something like wireless drivers are, its just sad how breakable appear to be.
Subverting PatchGuard Version 2 is Skywings the lastest effort on how to overcome Microsofts integrity checking technology. Its nice to see how far Microsoft have come and yet quite amusing to see the holes they leave open...
It also includes a nice article from skape on relocation tricks one can play with PE files. Although some of those tricks have been around in malware for a while this is the first time Ive seen a good write-up about how they work.
Playing with relocations is a trick that Pedram and I always comment on in our training when teaching the PE file format. Speaking of which, Pedram and I will be teaching our training, Reverse Engineering on Windows: Application in Malicious Code Analysis, in BlackHat DC on February 26-27
Comments
| Posted: Wednesday, December 31 1969 18:00.00 CST | |