Made of Bugs » 2010 » December

Log in

Archives

Some Android reverse-engineering tools

I’ve spent a lot of time this last week staring at decompiled Dalvik assembly. In the process, I created a couple of useful tools that I figure are worth sharing. I’ve been using dedexer instead of baksmali, honestly mainly because the former’s output has fewer blank lines and so is more readable on my netbook’s [...]

4 comments

Dec 27th, 2010 | Filed under Low-level hacking

Tags: android, dalvik, dedexer, reverse-engineering, security
CVE-2010-4258: Turning denial-of-service into privilege escalation

Dan Rosenberg recently released a privilege escalation bug for Linux, based on three different kernel vulnerabilities I reported recently. This post is about CVE-2010-4258, the most interesting of them, and, as Dan writes, the reason he wrote the exploit in the first place. In it, I’m going to do a brief tour of the various [...]

2 comments

Dec 10th, 2010 | Filed under Computer Security, linux

Tags: bugs, cve, full-nelson, kernel, linux, security

Archive for December, 2010

Tweets

@skier_t Sure thing. nelson.elhage <at> http://t.co/wL8F35Co is best for Ksplice stuff. in reply to skier_t 23 hrs ago
@lirael_abhorsen "Oh, I hadn't heard those were back on the allowed-items list." in reply to lirael_abhorsen 1 day ago
Currently, if it decides I'm currently using the web interface, it doesn't bother sending the messages to Jabber. 1 week ago
If I am using google chat via both Jabber and the gmail UI, is there a way to force it to actually send the Jabber client all my messages? 1 week ago
More updates...

Powered by Twitter Tools