Viewing posts for the category Research & Development

Virtual machine series: Lightweight embeddable languages

Posted by: Subreption LLC in Security Research & Development Software Development 1 year, 2 months ago Soon we will be publishing several articles about open source embeddable virtual machines available today. Among them we will be talking on LUA, Forth, Pawn (originally Small), Squirrel, specialty implementations of Python such as PyMite, Io, NekoVM, Falcon and Parrot. Depending on time availability it might take some time until all of these languages are covered. Mileage will also vary regarding detail and depth of evaluation.The rationale behind these articles is the lack of summarized, objective information about the implementations of embedded languages, the differences between them at implementation level, limitations and features, et cetera. If you are looking for such information to make a decision about which VM or language suits you best, these articles might be of help to have a reasonably solid base for your evaluation process. Tags: vm embedded
read more / Comments

KERNHEAP for the Linux kernel 2.6 released

Posted by: Subreption LLC in Linux Security Research & Development 2 years, 6 months ago Few months after the publication of the original "Linux Kernel Heap Tampering Detection" paper in  Phrack Magazine 66, we are proud to announce the availability of KERNHEAP. The implementation has built on several of the ideas described in detail in the paper. There are several improvements and changes not covered by the article, which are significant enough to be explained in a more or less detailed manner in this announcement.Without further ado, KERNHEAP is available at http://www.subreption.com/kernheap as patches applicable to the latest stable 2.6 Linux kernel revision. Tags: kernheap linux mitigations
read more / Comments

Runtime binary loading via the dynamic loader on Apple Mac OS X

Posted by: Subreption LLC in Security Apple Research & Development 3 years, 3 months ago An article written by Dan Goodin from The Register was recently published, it mentions a forthcoming presentation by Vincenzo Iozzo, which presents a method to load a binary on runtime, directly from memory, in Mac OS X systems. Here we like to stick to the technical side of things... so let's get started on explaining how this can be done, in case you aren't planning to attend Black Hat or just feel particularly curious on the topic! read more / Comments

Custom shellcode and return-to-libc on Mac OS X

Posted by: Subreption LLC in Security Apple Research & Development 3 years, 7 months ago After some time without any updates coming up, this article will show some techniques and strategies to improve reliability of exploit code in Mac OS X Tiger and Leopard (up to 10.5.5). Specifically, we will look at a technique to aid loading of stager shellcode and evading non-executable stack restrictions. This was hinted at the "OS X Exploits and Defense" book (Elsevier), chapter 7, which I wrote earlier this year (co-authored the book with Kevin Finisterre). read more / Comments

08.06.2011

The Blue Hat Prize: A late April Fools joke

07.16.2011

Privacy violations in Blind-Carbon-Copy mail

07.05.2011

Mac OS X Lion: Did security mitigations manage to squeeze in?

03.13.2011

Virtual machine series: Lightweight embeddable languages

10.24.2009

Why Linux security has failed (for the past 10 years)

• bluehat (1)
• microsoft (1)
• stunts (1)
• mitigations (3)
• macosx (1)
• pax (1)
• nx (1)
• gpg (1)
• pgp (1)
• vm (1)
• embedded (1)
• linux (3)
• mls (1)
• selinux (1)
• grsecurity (1)
• kernheap (1)