2018-11-29: Battle bot competition begins


You might be familiar with "Missions" - usually short CTF-like/programming exercises posted sometimes at the end of my videos for the enjoyment of the viewers. Well, this time the mission is pretty special! Long story short, firemark (with help from foxtrot_charlie) prepared a battle bot competition for a clone of a classical game (Battle City / Tank 1990).

All the details are here: mission025.txt

Deadline for bot submissions is 3rd January, 2019. And there are prizes! (iCE40HX8K FPGA boards and a trophy/cup for top1-3 places).

In case of any questions do e-mail segment_0xf4ult[at]protonmail(dot)com.

Good luck!

Read more... [ 0 comments ]

2018-12-03: Materiały postkonferencyjne: C/C++ vs Security!

Ostatnio było na mini-tournée po Polsce na kilku konferencjach/wydarzeniach/etc, i m.in. miałem okazję wygłosić prelekcję pt. "C/C++ vs Security!" (właśnie z wykrzyknikiem na końcu, bo jak się okazało Redford miał podobną, tylko bez wykrzyknika ← kluczowa różnica). Slajdy pokazałem na code::dive we Wrocławiu (w wersji 60 minutowej po EN), PUT Security Day w Poznaniu (w wersji 60 minutowej po PL), oraz na Security PWNing w Warszawie (w wersji 30 minutowej po PL). W każdym razie obiecałem, że slajdy udostępnię, więc oto i są:

Slajdy PL: click (Google Docs; File→Download as jeśli kogoś interesuje inny format)
Video PL: PUT Security Day

Slajdy EN: click (Google Docs; File→Download as jeśli kogoś interesuje inny format)
Video EN: (TODO jak pojawi się nagrania z code::dive)

I tyle.

Czytaj dalej... [ 2 komentarze ]

Five newest or recently updated notes (these are unfinished posts, code snippets, links or commands I find useful but always forget, and other notes that just don't fit on the blog):

Click here for a list of all notes.

EN Security papers and research notes

Some conference slides are linked at the bottom of this page.

EN Selected vulnerabilities

The full list of vulnerabilities discovered by me (including collaborative work) can be found here (please note that the list might be out of date).

The Google Application Security / Research site might also contain some of my findings.

EN Coding (selected posts)
EN Tools and libraries
  • PiXieServ is a simplified PXE (network boot) server for Windows and Linux-based OS, created for testing of very small home-made OS. See also the post about it.
  • ExcpHook, a system-wide exception monitor for Windows XP 32-bit. Useful if you're fuzzing something that doesn't like having a debugger attached.
  • Ent is an entropy measuring tool for reverse engineering reconnaissance (see also a post explaining how to use it).
  • HiperDrop is a simple command line process memory dumper for Windows, with a few different work modes.
  • asmloader - this little app executes headerless machine code (compiled assembly code). It's meant to be an aid in learning/teaching and playing with assembly, as well as the right tool when you just need to execute some machine code.
  • NetSock is a simple socket/networking lib/wrapper for C++ I've wrote back in 2003 and update from time to time - I use it for most of my network-enabled projects.
PL Videotutoriale i podcasty [ 0 views | 0 videos | 0 subscribers ]

Subscribe to me on YouTube W wolnym czasie prowadzę videocasty na żywo o programowaniu, reverse engineeringu oraz hackingu/security:

Livestream | Kanał na YT | Archiwum starszych odcinków

Najnowszy odcinek: Gynvael's Livestream #75: Implementujemy serwer FTP
[ 0 thumbs up | 0 comments | 0 views ]

Dodatkowo: ReverseCraft - starsza seria podcastów o reverse engineeringu i assembly.

PL Edukacyjnie (wybrane posty)

Dla programistów:

Security / hacking:

  • Hacking - jak uczyć się security/hackingu i spać spokojnie.

Dodatkowo, kilka przemyśleń na temat odnajdywania się na rynku pracy w IT:

PL Programowanie (wybrane posty)

← trochę więcej postów jest po angielskojęzycznej stronie.

PL Gamedev i GFX (wybrane posty)

Grafika generowana proceduralnie:

【 design & art by Xa / Gynvael Coldwind 】 【 logo font (birdman regular) by utopiafonts / Dale Harris 】