This is in response to an email I recently received (edited a bit for clarity) With our current resources we can test passwords to their hash in fractions of a second allowing for well resourced groups to test thousands of passwords every second. This means, given enough time and resources, you can crack any password [...]
This post really isn’t up to the standard of most others here. However, there comes a time when writing anything is better than nothing. I’m also glazing over a lot of details that would be important in implementing a Symbolic Execution Engine. I am interested in the discovery of memory-corruption vulnerabilities. The two often-used methods [...]
This post is about a new tool I’ve been working on, rop_tools. This is a tool for working with rop gadgets in ELF binaries (currently only 32-bit). But first I’ll talk about the reasons why I wrote the tool. I was recently working on exploiting a binary in linux. This binary was small, and I [...]
I read an article last night (this one in fact) which included the following sentence: “That said, it is no longer secure to hash your passwords with MD5, much less when it is unsalted.” I cringed. I understand this sentence comes from a common misunderstanding of what security a cryptographic hash brings to your password [...]
This post is a basic explanation of the concepts behind sending/receiving messages with PGP. This is the basic information I want someone to understand before I start communicating with them. These explanations are fairly simplified. Infeasible means it is very, very difficult to do something. In cryptology, this usually equates to something along the lines [...]
I just came across this post talking about a reflective XSS attack on google that only worked on IE 6/7. I’m going to make an assumption and assume this is due to Internet Explorer 8′s resistance to reflective XSS. I also came across this issue about a week ago and thought I would share some [...]
I know this talk took place at Shmoocon, and though I was not able to attend it, I just stumbled across this write up of the material covered. I believe it’s time to discuss a project of mine from a couple years ago: The Boot and Pwner (affectionately named The Bwner). I’m tired, so we’re [...]
The talks I plan on attending, in chronological order: A Paranoid Schizoprehnia-based Model of Data Security Marsh Ray Friday 1530 Main Track Gone in 60 Minutes: Stealing Sensitive Data from Thousands of Systems Simultaneously with OpenDLP Andrew Gavin Friday 1630 Main Track ZigBee Security: Find, Fix, Finish Ryan Speers and Ricky Melgares Friday 1730 Main [...]
I have been a flurry of posts for the past few days, and have gained interest with this simple, pen-and-paper-able cipher. The more I think about it, the more improvements I make. I am going to start with a brief introduction of some related ciphers, and then break down my cipher. If it seems I [...]