nixhacker - The Reverser's space

Follow

Subscribe to nixhacker - The Reverser's Space

Get the latest posts delivered right to your inbox

Great! Check your inbox and click the link to confirm your subscription

Please enter a valid email address!
Log in Sign up

Exploit Development

Nostalgic memory - An attempt to understand the evolution of memory corruption mitigations - Part 4

7 January 2024

Exploit Development

Nostalgic memory - An attempt to understand the evolution of memory corruption mitigations - Part 3

7 January 2024

Exploit Development

Nostalgic memory - An attempt to understand the evolution of memory corruption mitigations - Part 2

7 January 2024

Exploit Development

Nostalgic memory - An attempt to understand the evolution of memory corruption mitigations - Part 1

7 January 2024

Linux

Summary of linux kernel security protections and associated attacks

1 January 2023

MacOS Security

Uncovering the security protections in MAC - XProtect and MRT

22 February 2022

MacOS Security

Uncovering the security protections in MacOS - Gatekeeper

22 February 2022

Rootkits

Hooking or Monitoring System calls in linux using ftrace

24 September 2021

Reverse engineering

Remote debugging windows kernel driver(without symbols) using windbg

In this post we are going to learn few tips and tricks to debug a Windows kernel driver without symbols in windbg.

By Shubham Dubey 2 Jul 2021

Firmware

Firmware security 3: Digging into System management mode (SMM)

In the third part of the series we are going to discuss System management mode (SMM) and it's security. Moreover, We will try to interact with the SMM from our linux system.

By Shubham Dubey 20 Mar 2021

Firmware

Firmware security 1: Playing with PCI device memory

In this part of the series we will go through the basic of PCI devices and their memory. We will be developing linux kernel driver and using chipsec to analyze the data practically.

By Shubham Dubey 14 Nov 2020

Exploit Development

Impact of x64 calling convention in format string exploitation

In this post I will try to give you a brief on how format string exploitation can differ in 64 bit architecture due to different calling convention in 64 bit.

By Shubham Dubey 20 Oct 2020

Peeling Back the Layers: Understanding Windows components Architecture through SAC/EMS Reversing

Setting up EMS ( Emergency Management Services) SAC in Windows running inside Hyper-v

Remote Kernel Debugging Windows virtual machine (Generation 2) using Serial COM running inside Hyper-v

Nostalgic memory - An attempt to understand the evolution of memory corruption mitigations - Part 4

Nostalgic memory - An attempt to understand the evolution of memory corruption mitigations - Part 3

Nostalgic memory - An attempt to understand the evolution of memory corruption mitigations - Part 2

Nostalgic memory - An attempt to understand the evolution of memory corruption mitigations - Part 1

Summary of linux kernel security protections and associated attacks

Uncovering the security protections in MAC - XProtect and MRT

Uncovering the security protections in MacOS - Gatekeeper

Hooking or Monitoring System calls in linux using ftrace

Remote debugging windows kernel driver(without symbols) using windbg

Firmware security 3: Digging into System management mode (SMM)

Firmware security 1: Playing with PCI device memory

Impact of x64 calling convention in format string exploitation

Search suggestions