SEARCH RESULTS
 
Showing 1-10 of 54 records
 
Expand article

Anti-Debugging Series - Part I

2008-12-02 20:56:25 by Tyler Shields in Zero in a bit
 
...blocks for our running code. Many API based detections can be subverted within a debugger by hooking the API call and returning values that indicate a clean process. One way around this subversion is to directly query the process and thread blocks, bypassing the API calls. Direct analysis of the process and thread blocks, while more complex,...
 
Tags: process execution breaks, execution, process, methods query process, hardware breakpoint, hardware, process information, target process, methods
 
 
 
 
Expand article

Corrupted Heap Termination Redux

2008-06-07 04:00:00 by sdl in The Security Development Lifecycle
 
...blocks shows corruption (all blocks above about 512Kb on x86 and 1Mb on 64 bit are not allocated from segments; they are direct virtual allocations, the heap just holds a list of them along with some metadata to assure consistency with the rest of the heap. They are chained in a double linked list so corruption can be detected by walking the...
 
Tags: heap, free block list, block, handle, bogus heap handle, invalid, invalid heap, custom heap, block header
 
 
 
 
Expand article

SDL and the XSS Filter

2008-08-27 15:35:00 by sdl in The Security Development Lifecycle
 
...blocks the script from executing. The rest of the web page renders as usual. This is a vastly oversimplified sketch of XSS Filter for details, see the post by David Ross, inventor of XSS Filter on the Security Vulnerability Research and Defense blog So what does XSS Filter have to do with the SDL? Well, for almost nine years, since XSS was...
 
Tags: xss, xss filter, xss vulnerabilities, xss led, anti-xss library, xss attack, xss attacks, attacks, xss filter remembers
 
 
 
 
Expand article

Education and the willingness of parents ot insure their childs online safety is paramount

2008-09-02 23:58:11 by Doug Woodall in The Spyware Biz Blog
 
...blocks many child porn sites, but it also allows some sites to get through.?Also, child porn sites are typically very good at evading filters.?Just as importantly, the software mandated for schools and public libraries doesnt just ban child porn, it bans thousands of sites.?Does the software company investigate the thousands of sites it...
 
Tags: child porn sites, child, sites, software blocks, software, software simply, ban child porn, blocks, software company
 
 
 
 
Expand article

On virtualisation

2007-05-29 16:20:00 by Niels Provos in Google Online Security Blog
 
...blocks of data around the display. If exploited, by specifying pathological parameters for the operation, this could lead to an attacker compromising the virtual machine process. While you would typically require root (or equivalent) privileges in the guest to interact with a device at the low level required, device drivers will often offload...
 
Tags: machine, virtual machine process, virtual machine software, host machine, host, software, virtual machine, low, low level access
 
 
 
 
Expand article

Spamhaus litigation: Will spammers get a second wind?

2006-10-16 01:38:55 by Administrator in Email security & compliance blog
 
...blocks 50 billion spam messages per day. The majority of these messages are illegal, containing offensive content or propagating scams and phishes. Spamhaus is currently deemed to be one of the most effective and accurate black lists currently available, with a near to 0% false positive rate. If Spamhaus were to be shut down, not only will...
 
Tags: spamhaus, spamhaus litigation events, spamhaus claims, spamhaus website, spamhaus registrar, spam, billion spam messages, e360insight, e360insight claims
 
 
 
 
Expand article

Blue Box #70: 2-yr Anniversary show, VoIP security vulnerabilities, Vonage, Comcast, phishing, listener comments and much, much more...

2007-11-07 21:52:53 by HASH0x89e6354 in Blue Box: The VoIP Security Podcast
 
...blocks some Internet traffic Ed Brill notes the impact on Notes/Domino traffic cnet post TorrentFreak: Comcast Throttles BitTorrent Traffic, Seeding Impossible P2P Net: Comcast impedes hi-speed file sharing Carnegie Mellons CyLab and Nortel Combine Efforts to Research Leading Security Technologies SearchVoIP.au: Avaya white paper: VoIP...
 
Tags: voip security, voip security vulnerabilities, voip security news, voip, voip security podcast, consumer voip, vulnerabilities, sans voip security, sans
 
 
 
 
Expand article

Blue Box #70: 2-yr Anniversary show, VoIP security vulnerabilities, Vonage, Comcast, phishing, listener comments and much, much more...

2007-11-07 22:52:27 by Dan York in Blue Box: The VoIP Security Podcast
 
...blocks some Internet traffic Ed Brill notes the impact on Notes/Domino traffic cnet post TorrentFreak: Comcast Throttles BitTorrent Traffic, Seeding Impossible P2P Net: Comcast impedes hi-speed file sharing Carnegie Mellon???s CyLab and Nortel Combine Efforts to Research Leading Security Technologies SearchVoIP.au: Avaya white paper: VoIP...
 
Tags: voip security, voip security vulnerabilities, voip security news, voip, voip security podcast, consumer voip, vulnerabilities, sans voip security, sans
 
 
 
 
Expand article

lcms speed

2008-01-15 18:01:23 by Liudvikas Bukys in Liudvikas Bukys
 
...blocks for which a one-entry cache is actually suitable Eliminating the general-purpose byte packing and unpacking functions and replacing them with inline encoding-specific equivalents cuts another 15% of runtime Compound savings: 49%, or 2x speedup, which is what someone claimed on an lcms mailing list once without providing the code Future...
 
Tags: one-entry cache cuts, one-entry cache, lcms, thread-safe memory, thread-local caches, cache comparisons, inline, equivalents cuts, lcms-1
 
 
 
 
Expand article

The Dutch Embassy in Moscow Serving Malware

The Article has images
2008-01-28 16:07:58 by HASH0x8af6a58 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge