取证分析挑战 6 - 分析恶意编码 PDF 档案
Mon, 11/01/2010 - 07:19 — roland.cheung取证分析挑战 6:分析恶意编码 PDF 档案 - (由来自马来西亚分支的Mahmud Ab Rahman和Ahmad Azizan Idris提供) 利用含恶意编码 PDF档案进行的典型攻击。
鑑識分析挑戰 6:分析惡意編碼 PDF 檔案
Mon, 11/01/2010 - 06:54 — roland.cheung鑑識分析挑戰 6:分析惡意編碼 PDF 檔案 - (由來自馬來西亞團隊的Mahmud Ab Rahman和Ahmad Azizan Idris提供) 利用含惡意編碼 PDF檔案進行的典型攻擊。
Is that PDF so scary?
Fri, 09/10/2010 - 09:56 — guido.landi- "it bypasses DEP and ASLR using impressive tricks and unusual methods" - Vupen
- "it uses a previously unpublished technique to bypass ASLR" - Metasploit Blog
- "exploit uses the ROP technique to bypass the ASLR and DEP" - ZDnet/Kasperky
We are a 501c3 non-profit, all volunteer organization. Consider donating to support our forensic challenges, tools development, and research.