Workstation 6.5 and ACE 2.5 beta are out and available for download. The most interesting feature added for me is the Support for Smart Cards and Smart Card Readers. Also an interesting new feature is the “Unity” that integrates applications on guest to be controlled from the host. Not sure at the moment how will [...]
Archive for the ‘Reverse Engineering’ Category
1
Tor Controller
Posted: November 13, 2007 in Malware, Reverse Engineering, Security, Security Testing, Web SecurityVidalia is a cross-platform controller for Tor (The Onion Router) for network anonymity, built using the Qt toolkit. It allows the user to start, stop, and view the status of Tor, monitor bandwidth usage, view, filter, and search log messages, and configure some aspects of Tor. The most feature of Vidalia is its Tor network [...]
A talk on Open Source on Software Freedom Day
Posted: October 15, 2007 in Codes & Utilities, Programming, Random Writings, Reverse Engineering, Security, Security Testing, Virtualisation, Web SecurityThe world celebrated the Software Freedom Day on 15th September 2007. We had some 100+ countries and more than 300 groups covering the free software world in different form of activities, presentations and events. The webmasters of FAST-NU Karachi also organized an event and talk series on the day and I felt really honored and [...]
Recording the Runtime State of a VM
Posted: February 17, 2007 in Reverse Engineering, Security, Security Testing, VirtualisationAs VMWare 6 Goes into beta 3, the most awaited feature and a tester dream comes to reality. To capture, record and replay EVERYTHING that happens to a VM. This is not a movie recording, but more of a runtime execution and state recording. You can play back a recorded instance (say a list of [...]
Seems an interesting discussion. http://forum.sysinternals.com/forum_posts.asp?TID=9630&TPN=1 They claim none of the present anti-rootkits have been able to detect it.
Beyond the Win32 API (Part I)
Posted: August 31, 2006 in Programming, Reverse Engineering, Security, Security TestingThe Win32 or simply the Windows API allows developers to exploit the deep power of the Windows OS internals and use them in there applications. WinAPI (and Platform SDK) provides functional interfaces to communicate directly with the OS and make system calls including base OS services, control libs, GDI, shell, network services and numerous others. [...]
Runtime Unmanaged Code Analysis for Software and Security Testing (Part I)
Posted: August 8, 2006 in Codes & Utilities, Programming, Reverse Engineering, Security, Security Testing, Web SecurityOne of the biggest challenges faced by programmers, architects, testers, and security consultants is to understand the consequences of their applications when deployed into production. Even with access to source code, it is difficult to understand everything that will occur during execution due to a variety of dependencies (for example. Different OS platforms, multiple patch [...]
OC Defcon Presentation on Malware Detection
Posted: August 7, 2006 in Malware, Reverse Engineering, Security, VirtualisationOffensive Computing just released their presentation slides, videos and sample codes from their Defcon 14 talk. There paper Further Down the VM Spiral discusses several new tools and describes some new VM detection techniques including a generic virtual machine detector. This VM detector tries a variety of methods including the new machine status word (MSW) [...]
eEye Security Research Tools
Posted: July 26, 2006 in Codes & Utilities, Malware, Reverse Engineering, Security, Web SecurityAn excellent resource for security research tools: http://research.eeye.com/html/tools/ Blogged with Flock
Did you ever had a need to know whether your Windows system is sniffing network traffic off the network without your knowledge? This type of passive attack can be very difficult to detect. There are numerous third party tools that try to detect network sniffers running on the network by looking for signs of systems [...]
