Chengyu Song

June 7, 2011

Lion and iOS 5

Today Apple unveiled the next generation of OS X, Lion and new iOS 5. Among the features, I’m concerned about two features: AriDrop and iCloud. My […]
February 7, 2011

Improve the security of unlocking your smartphone

There is a paper at WOOT 10′ described how to use smudges on the touch sceen of a smartphone to get largely decrease the time an […]
December 2, 2010

Another possible way to intercept function calls in QEMU

I’m developing a syscall interception tool for Android as a course’s project. While it is relatively simple to intercept calling into the system services (introduced at […]
August 17, 2009

A Brief Introduction to Qebek

Here is a brief introduction on Qebek, answering some questions.
July 30, 2009


As the console spy is almost finished, the next stage is mainly for network activities. Sebek Win32 version uses TDI hook to get this done. However, […]
June 26, 2009

stack crash?

This phenomenon is first observed when I tried the NtReadFile test last week, sometimes when the postNtReadFile is called, the handle value, buffer address and buffer […]
June 21, 2009

QEMU dyngen

This is supposed to be the first Qebek blog, but unfortunately, it cannot pass the check of mod_security (even today), so I posted here.  
June 14, 2009

Precall and Postcall

When using hooking technology to intercept system calls, there are two different places to collect information: before the original function is called (precall) and after the […]
June 11, 2009

Is Handle Std

Sebek Windows client has two keystroke sources, one is read or write std stream, the other is csrss port. In the callback function of NtReadFile and […]