nixhacker - The Reverser's space

Follow

Subscribe to nixhacker - The Reverser's Space

Get the latest posts delivered right to your inbox

Great! Check your inbox and click the link to confirm your subscription

Please enter a valid email address!
Log in Sign up

Rootkits

Hooking or Monitoring System calls in linux using ftrace

24 September 2021

Reverse engineering

Remote debugging windows kernel driver(without symbols) using windbg

2 July 2021

Firmware

Firmware security 3: Digging into System management mode (SMM)

20 March 2021

Firmware

Firmware security 1: Playing with PCI device memory

14 November 2020

Exploit Development

Impact of x64 calling convention in format string exploitation

20 October 2020

Windows OS

Fixing DLL exports for DLL hijacking(DLL proxy)

5 August 2020

Windows OS

Mitigate and Detect Local Privilege Escalation cause due to Symbolic Links

31 July 2020

Tutorial

Developing and Installing your first Kernel driver in Windows 10(under 10 min)

10 June 2020

Exploit Development

Breaking Antivirus: Arbitrary file deletion using Symbolic link

A newly discovered symbolic link attack in many antivirus can cause arbitrary file deletion. In this blog, we will be discussing how to create the exploit and mitigate it.

By Shubham Dubey 28 Apr 2020

Exploit Development

Understanding and Exploiting Symbolic links in Windows - Symlink Attack EOP

Symbolic link can be abused to cause elevation of privilege or arbitrary write/delete. In this article we are going to understand symlink and will learn how to exploit/abuse them.

By Shubham Dubey 16 Apr 2020

Intel architecture

Segmentation in Intel x64(IA-32e) architecture - explained using Linux

In this article we will go through Segmentation in basic and cover it for x64 (IA-32e) processors by extracting the details inside a Linux system.

By Shubham Dubey 21 Feb 2020

Malware

Malware analysis interview questions with detailed answers (Part 4)

In this part we will discuss advance as well as miscellaneous questions for malware analysis interview. Even if you are already an experienced researcher, still these questions can be helpful for learning some new stuff.

By Shubham Dubey 26 Dec 2019

Summary of linux kernel security protections and associated attacks

Uncovering the security protections in MAC - XProtect and MRT

Uncovering the security protections in MacOS - Gatekeeper

Hooking or Monitoring System calls in linux using ftrace

Remote debugging windows kernel driver(without symbols) using windbg

Firmware security 3: Digging into System management mode (SMM)

Firmware security 1: Playing with PCI device memory

Impact of x64 calling convention in format string exploitation

Fixing DLL exports for DLL hijacking(DLL proxy)

Mitigate and Detect Local Privilege Escalation cause due to Symbolic Links

Developing and Installing your first Kernel driver in Windows 10(under 10 min)

Breaking Antivirus: Arbitrary file deletion using Symbolic link

Understanding and Exploiting Symbolic links in Windows - Symlink Attack EOP

Segmentation in Intel x64(IA-32e) architecture - explained using Linux

Malware analysis interview questions with detailed answers (Part 4)

Search suggestions