SQLi: WAF Bypass Techniques

During a recent pentest, I encountered a WAF (CloudFlare in this case). I learned some interesting things about how to go about bypassing various filters. Identifying »

MozJPEG Fuzzing

This blog post details the steps I took to set up AFL fuzzer to target MozJPEG. I did this using the base image that was set »

Xpdf Fuzzing

This blog post explores my first experience with AFL (american fuzzy lop). I targeted Xpdf, a PDF viewer for Linux distributions. This post is mostly designed »

Halo Hacking

This blog post will demonstrate how to go about reverse engineering structures and functions of interest in a binary. Once this has been accomplished, I will »

CVE-2014-0301 Analysis

This blog post will demonstrate how to trigger a vulnerability with only the public information available provided by the vendor during a security patch release cycle. »

DarunGrim with Symbols

DarunGrim is a patch diffing utility written by Matt Oh. It uses IDA Pro and a few open source python libraries to perform patch diffs. At »