http://evilcodecave.blogspot.com/2009/08/how-fastly-bypass-hostile-code-for.html
Regards,
Giuseppe ‘Evilcry’ Bonfa’
How fastly bypass Hostile Code for Trojan-GameThief.Win32.Magania
August 28, 2009
Leave a Comment » | 
(In)Security, Reverse Code Engineering | Tagged: DALXBHDFGERTONGOJK_POP, nmdfgds0.dll, olhrwef.exe, PolyEnE 0.01+ by Lennart Hedlund, RavMon.exe, Trojan-GameThief.Win32.Magania, unpacking | 
Permalink
Posted by evilcodecave
How to debug a process created by another one
August 26, 2009Redirection:
http://evilcodecave.blogspot.com/2009/08/how-to-debug-process-created-by-another.html
Regards,
Giuseppe ‘Evilcry’ Bonfa’
Leave a Comment » | 
Reverse Code Engineering | 
Permalink
Posted by evilcodecave
Malware – 26xpl SSH Propagating Exploit Pack
August 25, 2009Redirection to my second blog:
http://evilcodecave.blogspot.com/2009/08/malware-26xpl-ssh-propagating-exploit.html
Regards,
Giuseppe ‘Evilcry’ Bonfa’
Leave a Comment » | 
(In)Security, Debugging & Disassembling, Reverse Code Engineering | Tagged: 2.6.13, 2.6.17.4 + 2.6.9-22.ELsmp systems, 26, a.sh, backdoor shogai, Exploit Pack, Malware Analysis, PRCTL local root exploit, Propagating, SmssmtpSender, SSH, xpl | 
Permalink
Posted by evilcodecave
GetProcessIoCounters does not compile with Gcc – Solution
August 25, 2009
Leave a Comment » | C / C++ (Visual Studio Based) Coding | Tagged: -lkernel32, compilation, gcc problem, GetProcessIoCounters, linker, winbase.h | Permalink
Posted by evilcodecave
Linux Process Memory Dumper in Python
August 23, 2009Redirection:
http://evilcodecave.blogspot.com/2009/08/linux-process-memory-dumper-in-python.html
Regards,
Giuseppe ‘Evilcry’ Bonfa’
Leave a Comment » | C / C++ (Visual Studio Based) Coding, Reverse Code Engineering | Tagged: Linux Process Memory Dumper, Python | Permalink
Posted by evilcodecave
How to solve GetFileVersionInfo Crashes a Qt Implementation
August 20, 2009Redirection:
http://evilcodecave.blogspot.com/2009/08/getfileversioninfo-crashes-qt.html
Regards,
Giuseppe ‘Evilcry’ Bonfa’
Leave a Comment » | C / C++ (Visual Studio Based) Coding, Reverse Code Engineering | Tagged: crash, GetFileVersionInfo, qfsfileengine_win.cpp, Qt, VS_FIXEDFILEINFO | Permalink
Posted by evilcodecave
W32/Skintrim Reverse Engieering – Functional Analysis
August 20, 2009
1 Comment | Reverse Code Engineering | Permalink
Posted by evilcodecave
TheGreenBow VPN Client tgbvpn.sys DoS and Potential Local Privilege Escalation Vulnerability.
August 17, 2009Hi,
Redirection:
http://evilcodecave.blogspot.com/2009/08/thegreenbow-vpn-client-tgbvpnsys-dos.html
Regards,
Giuseppe ‘Evilcry’ Bonfa’
Leave a Comment » | (In)Security, Driver Coding, Reverse Code Engineering | Tagged: bug, DoS, Potential Local Privilege Escalation, tgbvpn.sys, TheGreenBow, VPN Client, Vulnerability | Permalink
Posted by evilcodecave
W32/Skintrim Reverse Engieering of a Badly Coded Malware #4
August 17, 2009Redirection:
http://evilcodecave.blogspot.com/2009/08/w32skintrim-reverse-engieering-of-badly.html
Regards,
Giuseppe ‘Evilcry’ Bonfa’
Leave a Comment » | Reverse Code Engineering | Tagged: Malware, reverse engineering, Skintrim | Permalink
Posted by evilcodecave
SSH Malware Analysis – udp.pl, Juno and Stealth ELFs Reversing
August 17, 2009Redirection:
SSH Malware Analysis – udp.pl, Juno and Stealth ELFs Reversing
Regards,
Giuseppe ‘Evilcry’ Bonfa’
Leave a Comment » | (In)Security, Reverse Code Engineering | Tagged: bot, botnet, bruteforce attack, DDoS attacks, flood.tgz, Juno, Malware Analysis, Spamming, SSH, SSH Malware, stealth elf, udp.pl | Permalink
Posted by evilcodecave
