About
Basic info
Name: Matthew 'j00ru' Jurczyk
Team: Vexillium
Work: Hispasec
Contact
E-Mail: j00ru.vx@gmail.com
JID: j00ru@chrome.pl / j00ru@vexillium.org
Gadu-Gadu: 5813737
Articles / publications
(2010, EN) GDT and LDT in Windows kernel vulnerability exploitation (with Gynvael)
(2010, PL) Hakin9 3/2010: Luki bezpieczeństwa jądra Windows
(2010, EN) Hack in The Box E-Zine #2: Windows Objects in Kernel Vulnerability Exploitation
(2010, EN) HITB Dubai 2010: Co-authored the Case study of recent Windows Vulnerabilities presentation
(2010, PL) Hakin9 5/2010: Błędy tupy Write-What-Where w jądrze Windowsa
(2010, EN) Uninformed vol 11: Enter the x86 gate (with Gynvael and Dreg)
(2010, EN) Hack in The Box E-zine #3: Reserve Objects in Windows 7
Conference talks
(2009, PL) SecDay: Bootkity vs Windows
(2010, PL) SEConference: Praktyczne spojrzenie na luki bezpieczeństwa jądra Windows
(2010, EN) CONFIdence 2010 - Case study of recent Windows vulnerabilities
Security Vulnerabilities
2007-09-15: WinImage 8.10 multiple vulnerabilities
2007-11-22: Gadu-Gadu "emots.txt" Buffer Overflow
2008-09-15: IrfanView TIFF DoS and Heap Corruption
2008-11-24: SDL_Image 1.2.6 Local Buffer Overflow
2008-12-16: Opera Web Browser prior to 9.63 Unitialized Memory Information Disclosure
2009-08-07: Multiple PHP Denial of Service and Information Disclosure Vulnerabilities (with Gynvael and Icewall)
2010-03-11: Apple Safari BMP Image Uninitialized Memory Information Disclosure Vulnerability
2010-03-11: Apple Safari TIFF Image Uninitialized Memory Information Disclosure Vulnerability
2010-02-09: Microsoft Windows CSRSS Local Privilege Elevation (with Gynvael)
2010-04-13: Microsoft Windows Kernel Registry Key DoS (with Gynvael)
2010-04-13: Microsoft Windows Kernel Symbolic Link Creation Local Privilege Escalation (with Gynvael)
2010-04-13: Microsoft Windows Kernel Memory Allocation Local Privilege Escalation (with Gynvael)
2010-04-13: Microsoft Windows Kernel Symbolic Link Value DoS (with Gynvael)
2010-04-13: Microsoft Windows Kernel Null Pointer DoS (with Gynvael)
Detailed info
As far as I recall, subjects related to programming (C, C++, x86 assembler, Python and so on), reverse engineering, malware analysis (just like the one before), Bughunting (again!), NT OS internals research etc. are the things I spend most of my life on.
When it comes to real life things, I prefer reading horror books (Kings rulz), taking part in religion-around debates (;D), playing table-tennis and watching good anime / horror movies. Well, that's enough for now, I think.
Pages
Projects
Recent Posts
- Kernel exploitation – r0 to r3 transitions via KeUserModeCallback
- Windows CSRSS Write Up: Inter-process Communication (part 2/3)
- Blog customization, old PHP advisories
- Windows CSRSS Write Up: Inter-process Communication (part 1/3)
- Windows CSRSS Write Up: the basics (part 1/1)
Recent Comments
- j00ru: @NCR: Mmm… you should know it, already?;D
- NCR: @j00ru: what could it be?
- j00ru: @frank boldewin: thanks mate
@NCR: Ahaha, yeah ;D I’ve got something for ya btw. - NCR: Hey!, you did it!, you wrote it! thanks!
- frank boldewin: excellent writeup dude!