Welcome again to my humble corner. Today I will share a story how I managed to deal with embedded ELF files using Binary Ninja. I was reversing an ARM firmware for fun (unfortunately not for profit!) and run into the following issue. The firmware itself is comprised of three sections, a header, an ELF file… Continue reading Dealing with embedded ELF files in Binary Ninja
Phrack 70 is out!
After a long wait, indicative of the current state of knowledge sharing in the so-called “underground”, Phrack 70 is out. Read it here!
Amiga 500 Decompilation using Binary Ninja
Hello again $WORLD. I am happy to announce that my Commodore Amiga BinaryNinja plugin is now available to the general public. You can find it here. Essentially, the plugin is a BinaryView with support for both Amiga Hunk file formats. To simplify a bit, Amiga has a different file format for “executable” files and for… Continue reading Amiga 500 Decompilation using Binary Ninja
Commodore 64 Decompilation using Binary Ninja
Dear $WORLD. I am happy to announce that I have released the first version of my C64 PRG plugin for Binary Ninja. You can find it here. It has KERNAL support, to make reversing life just a bit easier. You can find it here. As always PRs, issues and corner case reports are more than… Continue reading Commodore 64 Decompilation using Binary Ninja
Pysa: An open source static analysis tool to detect and prevent security issues in Python code
Facebook engineering is at it again! Yesterday, Pysa was released, a static analyzer that detects common security issues based on dataflow in Python code. https://engineering.fb.com/security/pysa/
One flew over the CMS nest
Recently, I was looking for something simple for the more “corporate”-y side of web things. I tried some PHP based CMS. For looks and simplicity I decided to focus on one of the lesser known ones (i.e. not the workhorse that Drupal is). At first, I tried to setup SSL traffic between a managed MySQL… Continue reading One flew over the CMS nest
Adventures with Linux Outline Client and aws-iam-authenticator
Hi all, below is a small engineering puzzle that I had to solve recently. The essential components: a Linux Laptop (in my case, running the excellent ClearLinux distribution) aws-iam-authenticator Outline client (A shadowSocks client) The setup was the following. A Kubernetes cluster, a bastion host using Outline as the means to connect and access the… Continue reading Adventures with Linux Outline Client and aws-iam-authenticator
Running Binary Ninja under WSL
These days, I have access to a Windows 10 laptop, as opposed to my usual set of tools. One feature of Windows 10 that I really like is Windows Subsystem for Linux, or WSL for short. In case you have not followed the developments, it is a way to run native Linux executables under Windows,… Continue reading Running Binary Ninja under WSL
Book Review: Managing Kubernetes
So as 2018 comes to a close soon, one fact can be pointed out: Kubernetes is the winner of the container orchestration frameworks “war”, short lived as it was. The popularity of the project is growing steadily and it is being adopted in a variety of businesses, from the small, but technologically adept startup, to… Continue reading Book Review: Managing Kubernetes
Book Review: Database Reliability Engineering – Designing and Operating Resilient Database Systems
Hello and welcome to yet another book review. Databases have been called the “killer application of IT” and it is true that in, almost any, computing environment today, one or more databases are in play. Having said that, in-depth knowledge of these database systems used to reside with the DBAs of an organization. Today, with… Continue reading Book Review: Database Reliability Engineering – Designing and Operating Resilient Database Systems