Comments for j00ru//vx tech blog

Comment on NoSuchCon’13 and crashing Windows with two instructions by CRONICAS DE UN HACKER… Sólo 2 instrucciones para provocar el fallo de cualquier sistema Windows de 32 bits | Factor Noticia

Thu, 23 May 2013 19:21:51 +0000

[...] NoSuchCon’13 and crashing Windows with two instructions Abusing Windows NT #PF Trap Handler to Bugcheck and Leak [...]

Comment on NoSuchCon’13 and crashing Windows with two instructions by Andrea

Andrea — Wed, 22 May 2013 16:44:58 +0000

As usual, great work dude!
It was a pleasure for me to meet you!

Andrea

Comment on NoSuchCon’13 and crashing Windows with two instructions by jusme

jusme — Wed, 22 May 2013 14:17:19 +0000

xor ebp, ebp
jmp 0x8327d1b7

holds up fine on my xpsp3 x86. ;)
Great stuff, as usual.

Comment on SyScan 2013, Bochspwn paper and slides by Ani

Ani — Wed, 22 May 2013 13:18:53 +0000

Hi guys,

I got 2 questions for you.

1) Have you seen the presentation about VirtICE that was held at blackhat 2010? http://media.blackhat.com/bh-us-10/whitepapers/Anh/BlackHat-USA-2010-Anh-Virt-ICE-wp.pdf

2) Is it possible to make any comparison between yours and their approach, even though you do not have their tool (I assume)? Do you see any benefits of using Qemu instead of Boch, for example?
Considering to make my own tool/framework for this and wonder which way to go. Why did you pick Boch?

Comment on Fun facts: Windows kernel and guard pages by NoSuchCon’13 and crashing Windows with two instructions | j00ru//vx tech blog

Wed, 22 May 2013 02:01:08 +0000

[...] and kernel code execution flow” – a technique already described in the “Fun facts: Windows kernel and guard pages” and “A story of win32k!cCapString, or unicode strings gone bad.” blog posts. [...]

Comment on SyScan 2013, Bochspwn paper and slides by NoSuchCon’13 and crashing Windows with two instructions | j00ru//vx tech blog

Wed, 22 May 2013 02:00:35 +0000

[...] of the function’s parameters. Due to lack of time, this was not covered at NSC; however, our SyScan’13 slides and paper explain the problem thoroughly. [...]

Comment on ZeroNights slides, Hack In The Box Magazine #9 and other news by NoSuchCon’13 and crashing Windows with two instructions | j00ru//vx tech blog

Wed, 22 May 2013 01:57:25 +0000

[...] Copy Functions in Local Windows Kernel Exploitation” article published last year in the Hack in the Box Magazine, Issue 009. The Proof of Concept source code of a vulnerable device driver and an exploit used during live [...]

Comment on SyScan 2013, Bochspwn paper and slides by ncr

ncr — Tue, 07 May 2013 20:54:34 +0000

I agree with mgrzeg, you should write a book about windows kernel security and exploitation. excellent work, as always.

Comment on SyScan 2013, Bochspwn paper and slides by mgrzeg

mgrzeg — Tue, 07 May 2013 10:44:43 +0000

69 pages paper – guys, you should definitely write a book about windows security :)

Comment on SyScan 2013, Bochspwn paper and slides by j00ru

j00ru — Tue, 07 May 2013 09:32:38 +0000

@Andrea: Thanks! At NoSuchCon, I am going to be presenting a slightly different research :) You shall find out soon.

@Brendan: I dropped you an e-mail.