Monthly Archives: October 2011

The magic of LD_PRELOAD for Userland Rootkits

    How much can you trust binaries you are running, even if you had analyzed them before compilation? With less privileges than kernel rootkits (explained in “Ring 0f Fire”), userland rootkits still represent a big threat for users. To see … Continue reading

Category: elf, Reversing, Rootkit | Tagged , , , | 8 Comments

The Art Of ELF: Analysis and Exploitations

    New systems make attackers life hard and common exploitation techniques get harder to reproduce. The purpose of this article is to be very general on mitigation techniques and to cover attacks on x32 as a reference to x64 architectures … Continue reading

Category: Uncategorized | 6 Comments