Richard Johnson

@richinseattle

Training & Publications @ ; Director of Security Research, Oracle Cloud; previous Security Researcher @ Cisco Talos, Sourcefire, MSRC, iDEFENSE

uninformed.org // undercurrents.io https://github.com/richinseattle https://github.com/moflow https://github.com/fuzzing-io
Vrijeme pridruživanja: listopad 2009.

Medijski sadržaj

  1. 2. velj

    I'm just as lost when trying to figure out modern web development "stacks". Svelte? Bootstrap? Somebody talk to me!

  2. 27. pro 2019.

    A couple slimagotchi’s join the grid.. thanks for the cool project

  3. 21. pro 2019.

    Happy Solstice, time for seasonal cleaning..

  4. 18. pro 2019.
  5. 17. pro 2019.

    Good morning, internet!

  6. 15. pro 2019.

    Say hello to Digit, my new co-pilot!

  7. 15. pro 2019.
    Odgovor korisnicima

    Yep. I just brought Digit home an hour ago! My last dog was also a Boston that I raised from pup. They are the best.

  8. 14. pro 2019.
    Odgovor korisniku/ci

    I pick up my puppy tomorrow, give yourself the best gift ever this holiday season :)

  9. 13. pro 2019.

    Soon! (I'm third in line so next weekend or I get pick of next litter in spring.. but I don't wanna wait!)

    Prikaži ovu nit
  10. 12. pro 2019.

    Random crash of the day

  11. 29. stu 2019.

    Refurb Lenovo c630 with arm64 snapdragon 850 running Windows on Arm for $450

  12. 24. stu 2019.

    Static analyzers use heuristics or FLIRT to find main/winmain in stripped binaries .. this method is better (trace funcs, main is last func called before exit from depth 2 from libc's start), but I'd like to get it into a full oneliner.. guess I need a js script for WindbgX?

  13. 18. stu 2019.
    Odgovor korisniku/ci

    Unrelated to the tensorflow approach but probably of interest.. and might spawn some ideas

  14. 17. stu 2019.
    Odgovor korisniku/ci

    Congrats on the ride! That 4S is a screamer. I thought you bought that black vette a while back. I was lookin at Porsche but ended up trading in the Lotus Evora for a Jaguar F-Type S cuz I found a great deal and it has good performance without being silly w/ Seattle rain/hills.

  15. 18. lis 2019.
    Odgovor korisnicima

    Its alive... a system virus that auto fuzzes binaries via MITM when you execute them. First iteration intercepts bin (currently simulated in /tmp/bins) execution and fuzzes argv[0] parameter for one iteration on invocation. Next iteration will flip bits in other args :p

  16. 17. ruj 2019.
    Odgovor korisnicima i sljedećem broju korisnika:

    In this parser, the original mapping of input is done and a copy of the input is also created, we can see through data access patterns (grep on cmp instruction per input byte) that in the first copy, no comparisons are done on the 2nd DWORD field, but on the second copy there are

  17. 17. ruj 2019.
    Odgovor korisnicima i sljedećem broju korisnika:

    The target in this case was 'sox' or 'play' which supports several audio formats, here is the slice of the first byte which is used in dozens of comparisons on MAGIC value to determine we have a RIFF file. I grep on cmp instructions and dump the values of operands. -1 means taint

  18. 17. ruj 2019.
    Odgovor korisnicima i sljedećem broju korisnika:

    This made me think to do some dirty scripting on the moflow taint slicer.. more work to be done, but you can get a starting heuristic by how large the slice is or how many instruction touched value influenced by that byte. This is a WAV file, the header fields become obvious

  19. 7. ruj 2019.
  20. 6. ruj 2019.
    Odgovor korisniku/ci

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·