Firmware
Firmware security 3: Digging into System management mode (SMM)
In the third part of the series we are going to discuss System management mode (SMM) and it's security. Moreover, We will try to interact with the SMM from our linux system.
Shubham Dubey
Besides being a Linux & Open source advocate, I spent most of my time in working on low level security stuff(Reversing, Rootkits, Bios, negative rings etc).
Firmware
Firmware security 1: Playing with PCI device memory
In this part of the series we will go through the basic of PCI devices and their memory. We will be developing linux kernel driver and using chipsec to analyze the data practically.
Exploit Development
Impact of x64 calling convention in format string exploitation
In this post I will try to give you a brief on how format string exploitation can differ in 64 bit architecture due to different calling convention in 64 bit.
Windows OS
Fixing DLL exports for DLL hijacking(DLL proxy)
In this post we will discuss ways to export functions from your dll for dll hijacking. Exporting functions | Dll Proxy
Windows OS
Mitigate and Detect Local Privilege Escalation cause due to Symbolic Links
In this post we will discuss ways to mitigate symbolic links based Local privilege escalation exploits. We are also going to develop our own protection against these attacks.
Tutorial
Developing and Installing your first Kernel driver in Windows 10(under 10 min)
Windows kernel development is painful to follow after lots of changes in driver handling by windows. In this article I will help you with developing and installing your driver in less than 10 minutes in windows 10.
Exploit Development
Breaking Antivirus: Arbitrary file deletion using Symbolic link
A newly discovered symbolic link attack in many antivirus can cause arbitrary file deletion. In this blog, we will be discussing how to create the exploit and mitigate it.
Exploit Development
Understanding and Exploiting Symbolic links in Windows - Symlink Attack EOP
Symbolic link can be abused to cause elevation of privilege or arbitrary write/delete. In this article we are going to understand symlink and will learn how to exploit/abuse them.
Intel architecture
Segmentation in Intel x64(IA-32e) architecture - explained using Linux
In this article we will go through Segmentation in basic and cover it for x64 (IA-32e) processors by extracting the details inside a Linux system.
Malware
Malware analysis interview questions with detailed answers (Part 4)
In this part we will discuss advance as well as miscellaneous questions for malware analysis interview. Even if you are already an experienced researcher, still these questions can be helpful for learning some new stuff.
Virtualization
Developing hypervisor from scratch: Part 4 - Setting up HOST and GUEST State
In this article series you are going to learn how to develop your own hypervisor for virtualization in linux ecosystem. In this part we will do the setup of HOST and GUEST state area and at last the vmlaunch.
Virtualization
Developing hypervisor from scratch: Part 3 - Setting up VMCS
In this article series you are going to learn how to develop your own hypervisor for virtualization in linux ecosystem. In this part we will do the setup of VMCS structure.