Posts

Syzkaller Syzkaller is a coverage-guided, kernel fuzzer for Linux and other OSes such as BSDs and Windows. It provides a framework …

mTLS Overview In this post, we will deploy mTLS by using Caddy as reverse proxy to force client authentication before accessing …

Tenda Gigabit NIC and PXE booting I had a Tenda Gigabit NIC laying around and noticed it contained 2 chips on it which looked to …

Sierra Wireless EM7455, 4G Modem Modems are in many devices, perhaps most importantly your cellphone. These devices are almost …

RFID Hacking Proxmark The Proxmark is a neat tool to interact with RFID tags and do things like read, write, clone, simulate, and …

UEFI Option ROM Bootkit Option ROMs Option ROMs (OpRom) are programs that get loaded by UEFI/BIOS during boot which allow a …

Intel Management Engine (ME) Removal Getting existing firmware The ME firmware is bundled as part of the UEFI firmware on a …

AFL++ AFL++ is an improved version of AFL, a popular and successful fuzzer. In this article we will use it to discover a couple …

Firmware Analysis Picking apart firmware is quite interesting to me and so I thought it would be fun to reverse engineer my …

QEMU I enjoy working on operating system kernels and hypervisors, and for a lot of my personal work I use QEMU to help with my …

Rootkits Rootkits are an advanced form of malware that leverage elevated privileges to hide themselves from the operating system. …

Buffer Overflows Stack-based buffer overflow attacks have been around for some time and have been a popular technique for …

ELF Files There are several techniques that can be used to obsfucate what an executable does at runtime. This post will …

Jumping Over Opcodes It is not uncommon for malware to attempt to obfuscate its behavior in various ways to avoid analysis. In …

TEG-S18TXE Switch I happened to have an old Trendnet TEG-S18TXE switch laying around the lab at work, so I decided to open it up …