-
Pulling a Hanselman
User interface / interaction design 101: if you want something, the least you can do is to ask for it. So I decided to take a page out of Scot Hanselman’s book (a blog worth reading BTW if you are interested in programming – it has an emphasis on Microsoft specific technologies, but other topics…
-
delicious/cdman83
OverTheWire – Wargames Posted: 19 Jul 2009 07:16 AM PDT Calabrese’s Razor « Righteous IT Posted: 19 Jul 2009 05:48 AM PDT The Windows NT Registry File Format Posted: 19 Jul 2009 05:35 AM PDT TMDBC: Extending the Java compiler to handle SQL ” Thormick’s Tech Blog Posted: 19 Jul 2009 02:40 AM PDT Checking…
-
Book review: The IDA PRO Book
Recently I’ve had the pleasure of reading trough “The IDA PRO Book: The Unofficial Guide to the World’s Most Popular Disassembler”. It is a well written book and definitely a “should read” for anyone working with IDA. The book is structured into 26 chapters which cover every aspect of IDA, no matter how exotic :-).…
-
Intelligent blog-spam?
Not long ago I received a very on-topic comment on my Weird RVRD issue explained. I started to research it, and even formulate an answer. However, I was somewhat suspicious because of the asymmetry between the username (“web development Dubai”) and the question (which was anything but web development related). So I did a little…
-
delicious/cdman83
Hacking CSRF Tokens using CSS History Hack Posted: 17 Jul 2009 11:56 PM PDT Ok, this is way cool! Bruteforcing the CSRF token from the URL on the client side and using the CSS history hack to check if we got it right! Very, very cool combination of existing ideas! HijackThis Logfileauswertung Posted: 17 Jul…
-
A must see southpark video
Via ZeroHedge. Usually I find Southpark videos a little too preachy / childish, but this too funny. You can watch the full episode here. After it you can enjoy some Pink Floyd 🙂
-
Bypassing SRP from PowerShell
When discussing with a reader of mine, I mentioned that the same method (patching the local process) should be possible using PowerShell. And here is the code: ######################################################### # This is a general purpose routine that I put into a file called # LibraryCodeGen.msh and then dot-source when I need it. ######################################################### function Compile-Csharp ([string]…
-
Executing arbitrary powershell script from the command line
After playing around with PowerShell, I quickly found that there seem to have been given a considerable amount of thought to the security aspect of it. Two security features which I found were: The default action for powershell scripts (.ps1) is “Edit”, not “Run”. This means that plain powershell scripts can’t create the same amount…
-
Review: Polymorphic Podcast
The Polymorphic Podcast is programming related podcast (think polymorphism as in object inheritance) which is somewhat Microsoft centric (.NET, Visual Studio, Silverlight, etc). That doesn’t mean however that there aren’t other technologies. For example the latest version talks about jQuery and managed to surprise me, with the mention of LiveQuery and SelectorGadget. An other interesting…
-
Review: Viruses Revealed
This book should be a must read for anyone thinking about malware and anti-malware (including – or especially – all the people in the media!). It is a hype-free, no-nonsense book, which doesn’t shy away from writing the truth. I found out about this book from the (ISC)2 blog, where Robert Slade (one of the…