Journal Issues
| Vol.5, No.1, 2008 | | Vol.4, No.2, 2007 | | Vol.4, No.1, 2007 | | Vol.3, No.2, 2006 | | RECON2006 Conf. Proc. | | Vol.3, No.1, 2006 | | RECON2005 Conf. Proc. | | Vol.2, No.1, 2005 | | Vol.1, No.2, 2004 | | Vol.1, No.1, 2004 |
Statistics
Members: 1925
News: 292
Web Links: 1
Visitors: 3732802
Who's Online
We have 4 guests online
|
 Damn Vulnerable Linux (DVL) is a Linux-based (modified Damn Small Linux) tool for IT-Security & IT-Anti- Security and Attack & Defense. [ CLICK HERE FOR MORE INFOS! ]
|
Featured Conference Video
 OllyBone - Semi-Automatic Unpacking on IA-32. View the conference video here!
|
|
Written by Luis Miras
|
Don't wait for your vendor to get around to it, fix bugs yourself!
There is no need to wait for patches and new (possibly expensive)
software upgrades. In many cases fixing bugs in binaries is easier and
faster than in the source code. This is especially true considering
the complexity of library dependencies and build environments.
Some consider "cracking" software protection a form of patching bugs,
that is not what this talk is about. It covers straightforward
reverse engineering techniques applied to solve flaws in running,
binary code you either don't have the source code to, or don't want to
rebuild from source. While there are obvious trade-offs to be made in
reliability, warranty coverage, and potential legal snags, if you have
the chops to research and reverse vulnerabilities, you already have
the tools to patch your apps.
I'll discuss the topic by showing how I fixed a bug in the camera
software on my cellphone.
Download: http://www.secure-software-engineering.com/downloads/recon2006/recon2006_Miras_Fixing_Bugs_in_Binaries.pdf
|
|