» On Monday, I presented Flayer: Exposing Application Internals at the First USENIX Workshop on Offensive Technologies (WOOT'07). Flayer is a Valgrind tool for software security testing and analysis that provides bit-precise input taint tracing and execution path alteration. … »
» This my crack at a (quick!) safe integer library for C. The routines are based off of the recommendations at CERT's secure coding site, but I'm trying to add interfaces that are more appealing to the developer. Shockingly, integer overflows and sign erro … »
» I was recently looking for (free) reverse engineering tools for Linux. On the open source front, there's virtually nothing left that works on modern Linux systems. Fenris, linice, and numerous others are all extinct. Without picking up a copy of IDA, you' … »
» I've been looking for a useful tool to aid note taking, but that I could also keep on a USB stick safely. I didn't want to have to toy with encrypted filesystems or specialized programs to access it, and I'd like it to be cross platform. I ran across »
» Ruby/ActiveLdap is a project I started when I first found Ruby. I'd been tortured by poor LDAP tool suites and LDAP's increasing ubiquity. It provides an ORM mapping from LDAP data to objects in Ruby by automatically parsing the server's LDAP … »
» The get_server_hello function in the SSLv2 client code in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions allows remote servers to cause a denial of service (client crash) via unknown vectors that trigger a null pointer dereference. … »
» Multiple buffer overflows in cscope 15.5 and earlier allow user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via multiple vectors including (1) a long pathname that is not properly handled during file list par … »
» Buffer overflow in the (1) DWARF (dwarfread.c) and DWARF2 (dwarf2read.c) debugging code in GNU Debugger (GDB) 6.5 allows user-assisted attackers, or restricted users, to execute arbitrary code via a crafted file with a location block (DW_FORM_block) that c … »
» I used to spend a lot of time writing helpful tools for myself in Ruby. I haven't done much in a while. I've dumped the old skeletons of work in a directory. Feel free to try anything out, but I can't guarantee how usefu … »
» Buffer overflow in the SSL_get_shared_ciphers function in OpenSSL 0.9.7 before 0.9.7l, 0.9.8 before 0.9.8d, and earlier versions has unspecified impact and remote attack vectors involving a long list of ciphers. Temporarily just giving the CVE summary: »
» A while back I sent a patch upstream to tcpdump which adds support for timed rotation of saved packet data files … »
» Ruby/ActiveLdap parses LDAP schemas provided by the server in order to determine what attributes are available for a particular object and how they should be treated. This is being done primarily with the regula … »
» An old stab at a POSIX-compatible, user-level threading library. … »

this page does not necessarily reflect the views of my employer or anyone i'm associated with.