fancy

HITB 2011 CTF – Reversing Vectored Exception Handling (VEH)

Published April 3, 2011 |

Today we will have a look at a CTF binary from HITB pre qualifications CTF 2011. This is an interesting binary to reverse because Vectored Exception Handling (VEH) was used in the challenge…
Continue reading →

Posted in 001_Security, Malware and Reversing, Uncategorized | Tagged -exploit-handler-part-6-1, 2011-hitb, corelan, ctf, ctf-hitb, ctf-reversing-unsolved-binaries, debug, exception, fancy, handler, hitb, hitb-2011, hitb-2011-ctf, hitb-2011-schedule, reversing-ctf, vectored, vectored-exception-handling, vectored-exception-handling-exploiting, vectoredexceptionhandle, veh

Codegate 2011 CTF – Binary200 – Anti Debugging Techniques Explained

Published March 14, 2011 |

By Corelan Team (fancy)

Aloha,

Again I stumbled upon a nice reverse-me, binary200 from the Codegate 2011 CTF.
And again there are some really interesting anti-debugging tricks implemented, so I decided to produce another video.
Continue reading →

Posted in 001_Security, Malware and Reversing, Video | Tagged anti, anti debugging, binary, binary200, bpexp, breakpoint, codegate, corelan, ctf, debugger, fancy, int 2d, ntglobalflags, ntqueryinformationprocess, peb, reverse engineering, reversing, seh, seoul, tls callback

Anti-debugging tricks revealed – Defcon CTF Qualifications 2009: Bin300 Analysis

Published February 27, 2011 |

By Corelan Team (fancy)

A while ago I stumbled upon an awesome write-up of a very nice CTF challenge created by sapheads: http://hackerschool.org/DefconCTF/17/B300.html I love cartoons, and I love reversing, so I decided to play a little bit with that binary (b300.exe) which was a lot of fun. Because some interesting anti-debugging tricks were implemented into the binary…
Continue reading →

Posted in 001_Security, Malware and Reversing, Video | Tagged a-new-anti-debug-trick-2011, analysis, anti debugging, anti-anti-debugging-tricks, anti-debug-tools-2011, anti-debug-tricks, b300.exe, binary, corelan, ctf, defcon, fancy, immunity-debugger-antidebug, index-of-tools-defcon, infosec-corelan, mona-py-defcon-movie, new-anti-debugging-trick-2011, offsec-defcon-videos, reversing, writing-debugger-ctf

Corelan Cybersecurity Research

:: Knowledge is not an object, it's a flow ::

HITB 2011 CTF – Reversing Vectored Exception Handling (VEH)

Codegate 2011 CTF – Binary200 – Anti Debugging Techniques Explained

Anti-debugging tricks revealed – Defcon CTF Qualifications 2009: Bin300 Analysis

Corelan Training

Donate

Corelan Team Merchandise

Corelan on Slack

Actions

Categories

Hi there!

We have good news for you!