S3cur1ty_Guy Says: Thank's for stopping by

Recent Articles PoC's

While you're here: Learn how to protect your assets

Recomended Resources Public domain research

Shellshock r2 fix

A lot have been discussed recently about this vulnerability in bash. The internet was totally shocked just like what happened with heartbleed. Several vulnerabilities have been discovered in bash, which caused the distros to release several updates on the same package and being a little chaotic to know which was…

Scripting r2 in Vala

Under some situations you need to automatize or extend the features of radare. There are so many scripting languages out there: python, ruby, perl, lua between others. All of them are supported by the radare package and you can use them from inside r2 using r_lang plugins and the ‘#!’…

Trainings and Translations

The summer is almost over and everyone is back to the main loop. Some of us will be in Oct 21-24 at hack.lu giving a talk and a workshop. See http://radare.today/well-be-at-hack-lu-2014/ But pancake (aka Sergi Àlvarez), the author and main contributor to the project will be busy giving two trainings…

Visual mode

One of the main complain we get about radare2 is that it has no GUI. Maybe we’ll get one someday, but for now, if you don’t like the CLI, you can use the visual mode, by entering V. Like with very command in r2, you can get help with the…

Binary diffing

Yesterday, a new feature was pushed to radare2: offset-based function diffing. We’d like to take this opportunity to write a bit about radare2’s diffing features before showing the shiny new one. Let’s take a copy of a cracked crackme as an example, and the true and false binaries. Without parameter,…

Payloads in C

Writing exploits requires to perform several steps to achieve the final purpose of the attack. find a vulerability reverse engineer the bug achieve code execution write the payload profit This post will focus on the later step: write the payload. The payload can spawn a shell, reuse a socket or…

Jihadist Fan Club CryptoCrap

Think of Mujahideen Secrets as a branded promotional tool, sort of like if Manchester United released a branded fan chat app. Although there has been a lot of FUD written about the encrypted messaging systems developed and promoted by jihadis groups, very little has focused on the how they are…

How goes the RSoC by the way?

Apart moving a bit slowly, it’s going fine. Skia is working on extending ‘pf’ command to improve display of nested structures, then will start to implement conditional structures, to lay the foundations of 010-templates-like support. jfrankowski is improving the YARA support, and will likely greatly enhance the zignature feature. fr33tux…

Types

One of the most wanted features for the RSoC was the support for 010-like templates. This is still planned, but there have been no recent movement on the topic. But some of the basic cparse support has been implemented and I think it’s time to get in touch with it…

We were at PSES!

One of our resident contributor (jvoisin) was at PSES to do a talk in French, entitled Rétro-ingénierie avec radare2 - Parce que l’assembleur, c’est sympathique, aka Reversing with radare2 - Because assembly is sympathetic. If you’re interested in french terms (some of them are funny), you can watch the whole…

Carving bins

Radare was initially developed as a forensic tool. Nowadays most people use it for static code analysis or binary patching, but the framework and the tools still provide functionalities for analyzing disk partitions or filesystems.. In this post I’m going to explain how to use r2 to extract some ELFs…