Syndicate

Syndicate content

Flattr


Flattr this
If you like this, you can use flattr. ;)

Imprint

About
eMail: wishinet at gmail . com
PGP ID: 0xCCCA5E74

Jabber: wishi@jabber.ccc.de

Home | Blogs | wishi's blog

0x41 - weekly exploitation matters - About

Fri, 03/19/2010 - 13:32 |  wishi
txttxt

Because it's a passion

Soon after I started with writing exploits I found out that I'm copying tutorials and performing attacks that have been created by people whose insight-level is far greater than mine. But I always wanted to at least document a bunch of things that fascinate me regarding the art of exploitation - and contribute at least something to the whole.

Therefore I decided to begin with summing up stuff that matters - to me. For now. This is not a smart-arse competition. I simply have got some time left and this is just another blog that deals with that special computer science topic.

Another reason for the "weekly exploitation matters" is that I believe that even if knowledge is out there regarding software security, it's getting ignored because that's easier and cheaper.
As a software-developer I always want(ed) to do a perfect job. Until I found out that 100% software security is impossible. But if you introduce security to a software-project, there's 10-times more work to do. The way to manage security within a software development plan is to at least motivate current issues of modern well known attacks.

If you know that stuff:

Last but not least: if you want to share inspiration, you can write an eMail to wishi - at - sandokai.eu (PGP 0xCCCA5E74). The comment function of this blog is just to bother spammers and to let them waste resources. They never learn.

Facts in short

  • I'm not starting at zero-knowledge.
  • I'm not dropping zero-days here.


  • I'm going to send the articles to tubler, too - or however this thing is named. That's just a backup.
    Blogspot

    • instead.

  • My note-db will most often contain the stuff I link to. Did you ever stumble upon an older tutorial with just dead links? Long live the cloud.
  • I'm going to focus on Windows and vulnerability discovery techniques. I didn't read the 5th edition of Windows Internals to forget about it ;)
  • Any book recommendation is a book I read and like. But I will never link to security-sell-out books with hacky titles and zero-content.

Have fun,
wishi

wishi's blog |  1+[encrypted]+#b94+ |  txttxt |  Tags: Exploits, wishi's weekly squib

Post new comment

The content of this field is kept private and will not be shown publicly.
CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.
Inhaltlich Verantwortlicher gemäß § 10 Absatz 3 MDStV, § 5 TMG, § 55 RfStV: Marius Ciepluch - Schauenburger Weg 5a - 23556 Lübeck
Aus Datenschutzgründen habe ich weder offiziellen noch behördlichen Schriftverkehr via eMail.

Save the nature. Don't print this!


I provide textual exports for every blog entry. However let's save the nature together. The nature is everything around us. Every being should be respected. Save the nature - don't print too much.


Die Umgehung dieser Ausdrucksperre ist nach § 95a UrhG verboten!
Inhaltlich Verantwortlicher gemäß § 10 Absatz 3 MDStV: Marius Ciepluch - Anschrift via eMail. Die eMail Adresse entnehmen sie dem Impresseum dieser englischsprachigen Seite.
Aus Datenschutzgründen habe ich weder offiziellen noch behördlichen Schriftverkehr via eMail. Dazu ist die postalische, beim Dienstleister hinterlegte, Anschrift zu verwenden.

Datenerfassung

Es werden keine personenbezogenen Daten erfasst. Logdaten werden anonymisiert.