OpenRCE: Blog

argg the day job attacks!

Fri, 27 Apr 2007 10:54:33 -0500

Wow, so I haven't had much time for anything other than the daily routine lately. I finally have some down time coming up so I can start catching up with all the great posts and articles again! w00t!

Unbreakable software

Thu, 08 Jun 2006 20:59:32 -0500

I often wonder what companies think when they market their products as 'unbreakable.'  I recently ran across GreenBorder and their virtualization product.  I also noticed there was a post on FD regarding their product.  They state the following:

With GreenBorder Pro, NOTHING CAN BREAK INTO YOUR PC from the Web.  You can:

HIPS thoughts

Mon, 29 May 2006 22:36:45 -0500

I've spent the last few years dabbling in and researching HIPS products, and have seen quite a few products come and go. I'm currently spending my time comparing some of the big players in the HIPS market like Cisco, Entercept, ISS, and a few others. It's interesting how diverse each product really is. I hope to finish up a paper on HIPS evasion based off of this research, it's been a blast, and I've learned alot about what companies say, and what the respective product actually will and will not do. Interestingly enough, when you start to figure out that the buffer overflow protection is incredibly limited, it kind of puts that whole snake oil spin on a given vendor for such poor implementations. Anyways, just a few thoughts for the evening. I read through Halvars blog, and have to agree, the next couple of years I believe also, Apple and the others are going to get slammed with vulns. It will be interesting to see!

Cheers!