http://www.openrce.org/rss/feeds/blog OpenRCE: The Open Reverse Code Engineering Community Sat, 06 Nov 2010 13:01:59 -0500 https://www.openrce.org/blog/view/1619/Remote_Code_Execution_-_Android_2.0,_2.1 DelightedZuk <email-suppressed@example.com> Webkit on Android 2.0, 2.1, is vulnerable to use-after-free vulnerability.<br /> <br /> enjoy: <a href="http://twitter.com/ihackbanme/status/956024508911616">Blog post</a> Mon, 19 Apr 2010 14:16:55 -0500 https://www.openrce.org/blog/view/1556/Aurora,_hooking,_advisories,_security,_RE,_life_-_my_blog DelightedZuk <email-suppressed@example.com> Hey guys,<br /> When I first posted this blog, it had only 1-2 lame posts, now I got much more security oriented posts.<br /> My blog is about security research (I still got some security advisories I'm going to release after vendor will patch it),<br /> Reverse Engineering, Aurora related original information, Hooking, programming, malware &amp; hacking!<br /> I'm also a member of security group who research malware, so I get very interesting samples! :]<br /> <br /> All the content is more-or-less is original, no copying of other posts.<br /> You're all invited to view, comment and sign up as followers.<br /> Thanks!<br /> <br /> <a href="http://bit.ly/bRUtHw">http://imthezuk.blogspot.com</a><br /> <br /> Cheers!<br /> <br /> Sun, 17 Jan 2010 04:34:28 -0600 https://www.openrce.org/blog/view/1542/Administrator_account_VS._SYSTEM_account DelightedZuk <email-suppressed@example.com> Full blog post including a bit sarcasm at : <a href="http://imthezuk.blogspot.com/">http://imthezuk.blogspot.com/</a><br /> <br /> I've encountered one trojan who ran already as Administrator and tried to run privilege escalation exploit against himself, so he can run as SYSTEM.<br /> This is what made me write this post :<br /> <br /> Let's say there are 2 programs vulnerable to remote-code-execution bug.<br /> 1. One is running as SYSTEM<br /> 2. One is running as Administrator.<br /> <br /> Little pre-post-information regarding exploitation : If you run your exploit against a process which runs as Administrator, Your payload will run as Administrator. If you run it against SYSTEM account your payload will run as SYSTEM account.<br /> <br /> Which one you would want to exploit more?<br /> 95% of security people, will say : &quot;the SYSTEM one, off-course SYSTEM is much stronger than admin, it's the strongest user in the OS&quot;.<br /> I'd say : it doesn't matter and I might slightly want to run as Admin instead of System. Why? This is what this blog-post is all about.<br /> <br /> pre Windows 2008 post. full post @ my blog :<br /> <br /> <a href="http://imthezuk.blogspot.com/"><b>http://imthezuk.blogspot.com/</b></a><br /> <br /> Fri, 04 Dec 2009 04:07:36 -0600 https://www.openrce.org/blog/view/1524/My_new_security_blog DelightedZuk <email-suppressed@example.com> http://imthezuk.blogspot.com/<br /> cheers :)<br /> <br /> <br /> BTW, are there any more guys here @ SANS London event now?? Thu, 10 Sep 2009 03:32:30 -0500 https://www.openrce.org/blog/view/1497/Python_POST_command DelightedZuk <email-suppressed@example.com> I've built a project for the company I work in, we'll publish it later, but one of the problems of the project was using another proxy which didn't implemented a POST method (and now I know why, it was hell to find about it).<br /> So, I will make your life easier, in-order to get a POST parameters, there's socket fileobject called rfile, that's what you're looking for.<br /> Params = self.rfile.read(int(rinstance.headers[&quot;content-length&quot;]))<br /> After that, building a POST (ssl or not) request using raw data is relatively easy.<br /> <br /> <br /> I hope it will save you a few minutes,<br /> Cheers.<br /> <br />