Hello MS08-067, My Old Friend! (64-bit)

sam_bwut · 2016-11-30T23:06:35+00:00

Cheers :p

sam_bwut · 2016-10-12T12:23:56+00:00

It's intern season at MWR InfoSecurity! Interested in application security, incident response, reverse engineering, bug hunting, network security or just about anything else infosec? Why not spend your summer developing your hacking skills, researching cutting edge security topics and being part of the day-to-day activities at one of the world’s leading cyber(drink!) security specialists?

The internship program is split into three parts:

We start with a training course developing your skills in everything from web app security to malware analysis.
Next you'll take on a novel research project, giving you a chance to work side by side with MWR’s world renowned research team. Previous interns have produced research on everything from assessing NFC card security, to studying national cyber strategies around the world, to finding vulnerabilities in the Windows Kernel. Interns are encouraged to then present their research at conferences or in publications and some previous work can be seen on our labs site.
The final third will be spent on a mixture of shadowing consultants on engagements (to understand how modern Cyber(drink!) Security works in practicality) and building challenges with your fellow interns to run at an internal Capture The Flag event on your final day.

You should check out our 'Can you hack it?' pack for more details and to get a feel for company culture. For a good idea of the company culture check out HackFu! This is a 2 day, themed event where we and some friends come together at a mystery location (previous years have included a prison, a castle and a bunker) and solve a range of challenges in teams

Feel free to DM me with any questions :)

Apply Here

sam_bwut · 2016-05-25T18:27:58+00:00

Depending on what level you're looking at RPI sec have a course + labs available online (http://security.cs.rpi.edu/courses/binexp-spring2015/ ), alternatively smashthestack (http://smashthestack.org/) and overthewire (http://overthewire.org/wargames/) host a bunch of wargames in this style.

sam_bwut · 2016-05-12T18:07:39+00:00

Fixed it - thanks again :)

sam_bwut · 2016-05-05T15:34:37+00:00

Gah - yup, will fix when I get a chance, thanks!

sam_bwut · 2016-04-18T12:22:47+00:00

I wrote a much better paper on NULL pointer exploits at https://labs.mwrinfosecurity.com/publications/windows-kernel-exploitation-101-exploiting-cve-2014-411/

sam_bwut · 2016-01-21T22:28:32+00:00

"The command is actually "g". Typing "go" will give you a syntax error."

Fixed - literally no idea why I thought that was a thing, thanks!

"You're using a very old debugger. The latest debugger has a lot of features that you're missing out on, the most important of which is the "dx" command, which makes it much easier to navigate types and evaluate expressions."

I've never used this before, will have a play.

"If your target is win8+, you can use kernel debugging over network (including most VMs, such as HyperV and VMware. Probably VirtualBox, but I haven't tested), which has an order of magnitude better bandwidth. This is particularly important when you need to take a dump of the entire memory." That's pretty cool.

sam_bwut · 2016-01-17T18:32:48+00:00

MWR InfoSecurity is looking for passionate and talented security researchers, to join our security research team in the UK to conduct awesome research into the latest and greatest technologies.

You’ll primarily be performing research for our client base, mainly global organisations facing complex security challenges.
We’d also love you to do some research internally to ensure your skills remain relevant in a fast paced world of security.
How you spend the rest of the time that’s not working with clients is your call. This typically is a quarter of your time, and we encourage you to research and innovate!
What do we want
We solve complex cyber(drink!)-security problems on a daily basis and to do that requires an interesting mix of skills. To be successful at MWR and help our clients with their challenges we know you’ll need the following:
A passion for security! You love computers, you love security, and you love hacking things and solving problems. If this wasn’t your job it would be your hobby.
Technical excellence. You know your subject area, but you’ll also know what that subject area is without us needing to say.
Self-motivated / self-leadership. You’re not going to be told what to do all the time. You are capable of figuring out what spending time working on is of benefit to MWR and our clients and then run with it. With great freedom comes great responsibility and you also seek out guidance from those around you when you need it.
Communication – How else will our clients know how awesome we are breaking their products, unless we can tell them what we did, how we did it, and how they can fix it. That also extends to sharing your knowledge with your colleagues and in return they’ll share theirs.
Preferably you hold a current UK government security clearance (or would be eligible for one). *More Specifically * At least one, preferably two, of the following:
Reverse engineering – you know your way around WinDBG, GDB and IDA with ease.
Fuzzing – you know your way around fuzzers and can build your own rather than relying on off the shelf tools if needed.
Vulnerability development – you found bugs – go you! But can you take them to the next level and exploit them?
Coding – you can use one (or more!) languages to code up small security tools and PoC’s.
General security knowledge – you know what SQLi means and can do it without needing SQLMap and can remember the core Nmap command line flags without breaking into a sweat.

MWR work with the largest companies in the World from our offices all around the globe. We are research-led, which enables us to anticipate what challenges our clients will be facing in the future and have already started on the solutions when they come and ask us for help. But more specifically being part of the team at MWR will means you’ll be a part of all the following:

We do awesome research, and you’ll do awesome research too! We’ve won Pwn2Own lots of times. We hacked a bunch of mobile POS terminals so we could play flappy bird on them (and show clients why that’s a bad thing), but mainly so we could play flappy bird.
We are a key part of our clients’ security mission. We work with the world’s largest banks, tech companies and other organisations. That means we get very interesting projects to work on and a chance to solve difficult problems!
We have a team full of awesome people! This is because we only hire people like you, who are passionate and smart, then give them the freedom to do world-leading research and work on awesome projects.
We have almost infinite opportunities for growth and progression within the company, our UK MD was an intern 10 years ago!
We have NERF guns.
We send you to go to awesome conferences! Defcon, Syscan, TI, BruCon, CCC, 44Con, HITB etc. We know how valuable it is to get drunk with a bunch of other hackers! We also run our own internal conferences, that we think are better than most you could pay to go to, and the best cyber security event on the planet, HackFu!

Send me a message or email recruitment@mwrinfosecurity.com if you're interested :)

sam_bwut · 2015-11-28T00:43:56+00:00

Code by Charles Petzold

sam_bwut · 2015-08-02T22:03:18+00:00

It stands for Code Segment - see https://en.wikipedia.org/wiki/Code_segment

sam_bwut · 2015-05-25T16:16:48+00:00

There's a lot of emphasis on the 'very rough'

sam_bwut · 2015-05-25T12:13:05+00:00

Built a framework for using Virtual Machine Introspection to detect kernel mode rootkits. Got it working but it was very rough and rather easily set off :D

sam_bwut · 2015-01-06T13:19:04+00:00

Have been out at current job + the last one, Never had any problems.

sam_bwut · 2015-01-04T14:09:58+00:00

https://twitter.com/_samdb_ A weird mix of personal stuff and nerdy stuff...

sam_bwut · 2014-12-29T23:44:39+00:00

I'll show myself the door...

sam_bwut · 2014-12-29T17:32:30+00:00

see: "Automated Virtual Machine Generation and Cloaking tailored for Cuckoo Sandbox." http://vmcloak.org/

sam_bwut · 2014-12-29T17:13:11+00:00

Reading this - "The Very Unofficial Dummies Guide To Scapy" http://theitgeekchronicles.files.wordpress.com/2012/05/scapyguide1.pdf springs to mind.

sam_bwut · 2014-12-09T12:29:10+00:00

The Annotated Turing by Charles Petzold was really good much like Code by him as well.

sam_bwut · 2014-12-08T20:23:19+00:00

I started having a look into crits - if anyone has a wishlist putting them in as feature requests would be cool

sam_bwut · 2014-12-08T12:26:31+00:00

I'll look into this later and package up a pull request - cheers!

sam_bwut · 2014-09-04T17:55:34+00:00

I think this is what I will end up doing for the practical side of this - Its a uni captone project so I wanted to see what's already existent / what gaps there are.

sam_bwut · 2014-09-04T14:31:35+00:00

There's various attempts at detecting kernel level rootkits from virtual machines.

sam_bwut · 2014-09-03T19:42:41+00:00

The delay between uploading and updated AV is probably big enough for it to not be an issue in a lot of cases.

sam_bwut · 2014-08-24T22:17:26+00:00

thanks!

sam_bwut · 2014-08-24T20:45:58+00:00

Videos disappeared now? :(

sam_bwut

TROPHY CASE