June 18, 2014

Released peepdf v0.3

After some time without releasing any new version here is peepdf v0.3. It is not that I was not working in the project, but since the […]
August 30, 2011

Beta release of libemu qemu extension

As part of this year’s Summer of Code, I programmed an extension for the shellcode detection and analysis library libemu. The main goal of the project […]
August 31, 2010

Export Address Table Filtering (EMET v2)

I’ll tell you the truth: Export Address Table Filtering, the feature of the upcoming release of EMET, “designed to break nearly all shell code in use […]
August 10, 2009

What’s new on PHoneyC (4): Try it out!

Hi all:        I have finished almost all the coding stuff of Project #1, now you can try out the new PHoneyC with shellcode/heapspray detection here: […]
July 5, 2009

What’s new on phoneyc (3)— Mid-term Evaluation

  Mid-term Report on PHoneyC GSoC project 1 Info: See <> forproject details. Author: Zhijie Chen (Joyan) <[email protected]> Mentor: Jose Nazario Description: Mid-term Report on PHoneyC […]
June 1, 2009

What’s new in phoneyc (2)— Shellcode and Heapspray Dectection

Hi folks:       I have done some basic shellcode and heapspray detection codes in the phoneyc’s ‘honeyjs’ javascript engine (based on python-spidermonkey, with extra […]
May 25, 2009

What’s new in phoneyc’s shellcode detection (1)— Tracing spidermonkey

1. Overview ——————————-                                                                                                                As I wrote in my project outline ( . I should have done some basic  enhancement and experiments on python-spidermonkey for a […]
December 10, 2008

libemu: Detecting selfencrypted shellcode in network streams

As libemu had it’s second release (0.2.0) lately, I’ll try to introduce it to the audience who did not hear about it yet. libemu is a […]