This is a vulnerability I discovered in PEiD v0.95, which is the latest version. The vulnerability was tested on Windows 7 and Windows XP. It’s triggered when the PointerToRawData of the last section causes integer overflow when subtracted from file size.
Continue reading “PEiD – Access Out of Boundary Memory Vulnerability”
error LNK2019: unresolved external symbol _ZwDelayExecution@8 referenced in function “int __cdecl foo(void)” (?foo@@YAHXZ)
fatal error LNK1120: 1 unresolved externals
This will show up whenever you try to compile the following example code with “CL” (Microsoft compiler) in the straight normal way. This article is about why, and how.
Continue reading “Using Windows Native APIs with CL and GCC”
So yesterday was my birthday, and after having a good company and watching a movie, I thought about doing something special, guess what? .. fixing a weird bug I had for a long time.In my PE scanning engine there was a weird heap corruption bug, after I spent a while looking for the cause, I found that some files have too long API names .. too longer than I expected.
Continue reading “How many characters a Windows API name could have?”
As it is my first blog post, I thought about what to add and then I was working on writing a small shellcode, so I said why not post it!
Here is a small shellcode of 81 bytes that displays a message box without importing USER32.DLL. It uses FatalAppExitA API which will display a message and terminates the program.
Continue reading “Message box 81 bytes shellcode”