"My first IDAPython script that searches for the differences between the call graphs of two functions"(abandonware)
PDML to Peach Pit (abandonware)
Interactive Virtual Machine Introspection based on DRAKVUF and libvmi(abandonware)
From Read to Domain Admin - Abusing Symantec Backup Exec with Frida
similarninja - Binary Similarity for Binary Ninja (abandonware)
Adding XCOFF Support to Ghidra with Kaitai Struct [code][code]
Emulating custom crytography with ripr
Rabbit Hole - Cumulative Cyclomatic Complexity for Ghidra
Ghidra Check Protector - Which non-trivial functions don't reference the stack canary checker
Testing Oracle Forms - presented at Hacktivity'19 [code][video][paper]
Unexpected Deserialization pt.1 - JMS
SemGWT - Using Semgrep to extract GWT RPC method information from cache files
Fuzzy Snapshots of Firefox IPC
OffensiveCon'22 - Case Studies of Fuzzing with Xen [Video] [Slides]
libfuzzer_kfx
CVE-2014-3440 - Symantec Critical System Protection Remote Code Execution
Trend Micro OfficeScan - A chain of bugs
Bare Knuckled Antivirus Breaking - multiple vendors, presented at WarCon'18
Notes on McAfee Security Scan Plus RCE (CVE-2017-3897) [SSD Disclosure]
Self-defenseless - Exploring Kaspersky’s local attack surface presented at EuskalHack IV [exploit]
Symantec Local Privilege Escalation - CVE-2019-12750 (exploit only)
Bake your own EXTRABACON (Cisco ASA, exploit only)
Drop-by-Drop: Bleeding through libvips,
generalization: Uninitialized Memory Disclosures in Web Applications [paper]
Fools of Golden Gate (Oracle GoldenGate, rediscovered via patch analysis)
MD5 poisoning for defense evasion: Poisonous MD5 - Wolves Among the Sheep, An update on MD5 poisoning
Abusing JWT public keys without the public key - featured in Web Security Academy [code]
Reflections on Reflected XSS AVPWN - List of real-world threats against endpoint protection software
BuheraBlog - "The" Hungarian IT-Security blog (2007-2014).
FAILnight
Come to the Dark Side, an invitation to offensive security - Presentation given to the Core Team of BME CrySys Lab
Hexcalc - DIY calculator with a hexadecimal keypad
The Debugger Pedal
Use-after-free tutorial: Part 1. Part 2. (outdated, Hungarain) [code]
Finding the salt with SQL inception
JDB tricks to hack Java Debug Wire
Have We Met? - Anti-phishing proxy experiment