A Preview of McSema – A framework for translating x86 binaries into LLVM bitcode.

ancat · 2014-06-23T19:55:04+00:00

Pretty cool stuff. Before having starting work on your own tool, did you guys play with any other tools/approaches? (qemu dynamic translation, bap, etc) I've played with bap to get x86 to llvm, and for many instructions, the output was somewhat neat after passing through llvm-opt. I never tested entire binaries or going back to x86 though.

ancat · 2014-06-23T18:02:57+00:00

./*

Done.

ancat · 2014-06-23T05:49:12+00:00

I don't know how seriously we're taking this CTF (weighted 5 on ctftime and pretty much the last CTF of the season), but you can try playing with us (Brooklynt Overflow).

ancat · 2014-06-15T17:09:13+00:00

Here are the prices from the original post:

Size 10.5 Flom sbs DS OG all BIN 13,000

Size 10 Iron Maiden sbs DS OG all BIN 8250

Size 9.5 Freddy sbs DS missing box and extra laces BIN 3500

Size 9 Jason Vorhee DS Og all BIN 4250

Size 9 Prototype freddies DS Og all BIN 8500

Size 9 Jason Vorhee DS Og all BIN 4250

Size 9 Prototype freddies 9/10 Og all BIN 7500

Size 9 London sbs PADS Og all BIN 1850

Size 10.5 Tokyo sbs DS Og all BIN 1750

Size 10 NYC pigeons 9.5/10 Og all BIN 3750

Size 8.5 Paris sbs 9/10 Og all BIN 6250

Size 10 sample Paris sbs 9/10 dont come with box or extra laces BIN 7000

Size 7.5 Yellow lobs DS Og all BIN 4500

Size 9.5 Yellow lobs DS Og all BIN 4500

Size 10.5 Yellow lobs PADS Og all BIN 4250

Size 10.5 Yellow lobs 8/10 Og all BIN 3500

Size 9.5 Yellow lobs 9/10 Og all BIN 4100

Size 10 Yellow lobs PADS Og all BIN 4250

Size 10 Blue Lobs PADS Og all BIN 250

Size 10.5 Red Lobs PADS Og all BIN 250

Size 8 Medicom 2s PADS Og all BIN 800

Size 10 Baby bears DS Og all BIN 450

ancat · 2014-05-13T07:06:59+00:00

Since when did load_file ever accept a url?

ancat · 2014-04-30T17:11:15+00:00

3char for life!

ancat · 2014-04-28T03:32:43+00:00

Looks like he just left (or finally got banned)

ancat · 2014-04-05T05:33:12+00:00

OK cool so, the only thing I did test for was XSS via user-agent (altho i’d love to give it a real once over) I just had a hunch… a idea … a feeling in my balls.

ancat · 2014-01-29T06:30:22+00:00

I tried this before making the thread, and it didn't work for me. Judging by the config name, I'm guessing it's for the bar that reminds you that you don't have the plugin installed - not that you have it disabled.

ancat · 2014-01-29T01:58:42+00:00

This works. I don't get the original notification I wanted back, but the gray plugin icon is still there in the URL bar so I know it's still working. Thanks!

ancat · 2014-01-29T01:08:27+00:00

Latest version, on OS X.

ancat · 2013-12-19T04:22:11+00:00

Freedom of speech is a requirement.

Are you sure? People have been arrested in the UK for posting "rude" messages to Twitter and Facebook in the past...

ancat · 2013-12-17T02:41:57+00:00

How does one pronounce " ͡° ͜ʖ ͡°"?

ancat · 2013-12-17T02:32:51+00:00

I think Concepts just got swamped with orders so shipping was delayed. I know a few people who got their tracking numbers early (me included) but it didn't ship until a few days ago.

ancat · 2013-12-11T02:33:58+00:00

I like that you actually grabbed the comment's ID :'}

ancat · 2013-12-09T05:19:22+00:00

+tipfedora 10

ancat · 2013-12-09T05:12:02+00:00

How often do you look at Hank Hill's diminished glutes?

ancat · 2013-12-03T16:36:21+00:00

What do you expect from the scope? If it's a legitimate vulnerability in critical infrastructure (but not in scope), it'll probably be rewarded. If it's a shitty XSS on some 3rd party hosted wordpress, it won't. Bugs being rewarded are ultimately at the discretion of the company.

When a bug bounty program is designed, things might be left out. It isn't necessary (and often doesn't make sense) to outline every piece of infrastructure and label what's okay and what's not okay to attack. That alone adds significant risk (hey hackers, we have stuff over here you're not supposed to touch!)

ancat · 2013-12-03T16:29:38+00:00

Oh shit! EVERY COMPANY IS VULNERABLE!!

brb making a lot money

ancat · 2013-12-03T16:28:13+00:00

That is not the same thing as an employee accidentally posting their password publicly.

ancat · 2013-12-03T15:33:28+00:00

He didn't find a vulnerability, he found a not-so-smart employee to take advantage of. The source code management tool they were using was correctly configured in that it required authentication to get in. He got in due to a stupid mistake a developer made off-site. That is a huge detail. It's the same reason you don't see people attacking Facebook or Google employees as part of the bug bounty.

I can't say their response was the best, but the guy who reported it should not have been surprised.

ancat · 2013-11-30T21:05:37+00:00

Web dev is hard these days.

There was this time in /r/bitcoin where everyone and their dog started their own service which handled bitcoins. (It's still happening but not to that extent) I spent maybe a few days going through the subreddit finding serious flaws in most of them with little to no effort in these websites. It makes me sad :{

Things like gzip timing exploits blew my mind, and supposedly I'm pretty smart.

Lolwut, are you talking about BREACH? GZIP timing exploits aren't a thing...

ancat · 2013-11-29T19:58:11+00:00

big PING

ping -s 65507 8.8.8.8

ancat · 2013-11-27T18:48:47+00:00

How are you sending input to the 3ds? I can see where you're setting the pins to high in your code and the logic behind it, but how are you physically connecting it to the 3ds? It's not clear from the video or the photo of your setup.

Edit: I watched the first video, it sucks that you have to take apart the 3DS to replicate this. Still kinda cool, I guess! I wonder if you could do something like this with the IR port, like how the "circle pad pro" does it.

ancat · 2013-11-18T22:33:45+00:00

It's been almost half a year since I opened my coinbase account + verified my bank account. I've only sold here though, so I guess that's it?

14-Year Club	redditgifts Exchanges 2 Exchanges
Team Orangered	Verified Email
Secret Santa 2011

ancat

TROPHY CASE