IDA Customs and Sony
 Peter Silberman (peter) <peter openrce org> |
Thursday, November 3 2005 10:32.11 CST |
Hey Guys,
A quick little plug, I posted to my file repository a script to rename jxx to jxx_signed or unsigned depending on the instruction. I think it'd be great if we all posted our custom scripts that we use to speed up analysis.
Also I've been reversing the sony rootkit there ARE BSOD and some possible memory overwrites that could lead to compromise (i say possible because exploitation in the kernel is a BITCH). Would you guys find it more useful to post the idb of my RE session? Or a paper and the IDB or just a paper? I m not saying I'll do any of that just wondering what people might be interested in. Most likley I'll post an the IDB and details on the BSOD. But since sony is automating the removal of this rootkit it is stupid to spend a lot of time RE it.
Peter~
Comments
| Posted: Wednesday, December 31 1969 18:00.00 CST | |