Category: reverseengineering

Exploiting Reversing (ER) series: article 02 | Windows kernel drivers – part 02

The second article (85 pages) in the Exploiting Reversing (ER) series, a step-by-step vulnerability research series on Windows, macOS, hypervisors and browsers, is available for reading on:

(PDF): https://exploitreversing.com/wp-content/uploads/2024/05/exploit_reversing_02-2.pdf

Happy New Year with happiness, harmony, peace and health to experience all the good times close to your families and friends.

The best thing about this life are the people.

Have an excellent and keep reversing!

Alexandre Borges

(JANUARY/03/2024)

PS: There is a typo on page 72 at the last but one bullet. Where you read “FILE_DEVICE_SECURITY_OPEN was specified for DeviceCharacteristics parameter, as recommended” you should change it to FILE_DEVICE_SECURE_OPEN was specified for DeviceCharacteristics parameter, as recommended”.

Exploiting Reversing (ER) series: article 01 | Windows kernel drivers – part 01

The first article (109 pages) in the Exploiting Reversing (ER) series, a step-by-step vulnerability research series on Windows, macOS, hypervisors and browsers, is available for reading on:

(PDF): https://exploitreversing.com/wp-content/uploads/2024/05/exploit_reversing_01-1.pdf

I hope readers like it.

Have an excellent day and keep reversing!

Alexandre Borges

Malware Analysis Series (MAS) – Article 7

The seventh article in the Malware Analysis Series (MAS) is available for reading on:

(PDF): https://exploitreversing.com/wp-content/uploads/2023/03/mas_7.pdf

I hope readers like it.

Have an excellent day and keep reversing!

Alexandre Borges

PS: the version A.1 includes few typos found by my colleague Kien Tran Trung (Twitter: @kienbigmummy)

Malicious Document Analysis: Example 2

I returned to write the second article of Malware Analysis Series (MAS) last January/08 after receiving an outstanding support from a high-profile professional and company of the industry, but while the article is not ready (I working on page 43 and far from the end), I spent a couple of hours writing a simple and short article on malicious document analysis. I hope it helps someone.

The PDF version is available on: https://exploitreversing.com/wp-content/uploads/2022/01/mda_2-2.pdf

Keep reversing and have an excellent day.

Alexandre Borges.

Malware Analysis Series (MAS) – Article 1

The first article of MAS (Malware Analysis Series) is available for reading from:

(link): https://exploitreversing.com/wp-content/uploads/2021/12/mas_1_rev_1.pdf

Soon I have enough time, so I’ll publish an HTML version of it.

Have an excellent day.

Alexandre Borges.

PS: this is a live document, so new versions of it will be published soon errors and mistakes are found.