Reverse Engineering a Custom Protocol and Performing MITM Packet Filtering with Scapy

Posted on Tue 31 December 2013 in reversing • Tagged with amf, android, arp poisoning, filter, firewall, hijack, iptables, mitm, networking, poker, reversing, scapy, tcp/ip, tshark, wireshark

Step by step reversing of a proprietary protocol with post-analysis packet injection

Continue reading

PHP shell exploiting mfunc vulnerability in WordPress

Posted on Fri 04 October 2013 in reversing • Tagged with base64, code injection, curl, mfunc, php shell, w3 total cache, WordPress, wp super cache

Analysis of the exploitation of vulns in WP Super Cache and W3 Total Cache WordPress plugins

Continue reading

The Call Stack - a Practical Review

Posted on Mon 05 March 2012 in reversing • Tagged with call stack, gdb, linux, registers

Revisiting the call stack, because it's never a bad idea to go over it once more

Continue reading

elBulli.com infected with a Trojan

Posted on Mon 30 January 2012 in reversing • Tagged with javascript, rce, security, virus

Analyzing an infection found on elbulli.com

Continue reading