Blogs about: Reverse Code Engineering
Featured Blog
Swimming into Trojan and Rootkit GameThief.Win32.Magania Hostile Code
Redirection: http://evilcodecave.blogspot.com/2009/10/swimming-into-trojan-and-rootkit.html Regards, Giuseppe ‘Evilcry’ Bonfa’… more →
Evilcodecave's Weblog
Swimming into Trojan and Rootkit GameThief.Win32.Magania Hostile Code
evilcodecave wrote 1 month ago: Redirection: http://evilcodecave.blogspot.com/2009/10/swimming-into-trojan-and-rootkit.html Regards, … more →
P-Code Opcodes List
antelox wrote 1 month ago: I have backuped a Database of P-Code Opcodes so it can help you and me to reverse a VB program makes … more →
Device Drivers Vulnerability Research, Avast a real case
— 10 comments
evilcodecave wrote 2 months ago: In the past days I worked intensively on Antivirus’s Device Drivers bugs, at the actual state … more →
Vista IRP Struct with offset references for consult
evilcodecave wrote 2 months ago: Redirection: http://evilcodecave.blogspot.com/2009/09/vista-irp-struct-with-offset-references.html … more →
Vista Tp* Thread Pool Functions
evilcodecave wrote 2 months ago: Redirection: http://evilcodecave.blogspot.com/2009/09/vista-tp-functions.html … more →
Vista's TEB Struct with offset for handy consult
evilcodecave wrote 2 months ago: Redirection: http://evilcodecave.blogspot.com/2009/09/vistas-teb-struct-with-offset-for-handy.html R … more →
Pills of Reversing - new PEB/_TEB members who uses it ?
evilcodecave wrote 2 months ago: Redirection: http://evilcodecave.blogspot.com/2009/09/pills-of-reversing-new-pebteb-members.html … more →
How fastly bypass Hostile Code for Trojan-GameThief.Win32.Magania
evilcodecave wrote 2 months ago: http://evilcodecave.blogspot.com/2009/08/how-fastly-bypass-hostile-code-for.html Regards, Giuseppe … more →
How to debug a process created by another one
evilcodecave wrote 3 months ago: Redirection: http://evilcodecave.blogspot.com/2009/08/how-to-debug-process-created-by-another.html R … more →
Malware - 26xpl SSH Propagating Exploit Pack
evilcodecave wrote 3 months ago: Redirection to my second blog: http://evilcodecave.blogspot.com/2009/08/malware-26xpl-ssh-propagatin … more →
Linux Process Memory Dumper in Python
evilcodecave wrote 3 months ago: Redirection: http://evilcodecave.blogspot.com/2009/08/linux-process-memory-dumper-in-python.html Reg … more →
How to solve GetFileVersionInfo Crashes a Qt Implementation
evilcodecave wrote 3 months ago: Redirection: http://evilcodecave.blogspot.com/2009/08/getfileversioninfo-crashes-qt.html Regards, Gi … more →
W32/Skintrim Reverse Engieering - Functional Analysis
— 1 comment
evilcodecave wrote 3 months ago: Redirection: http://evilcodecave.blogspot.com/2009/08/w32skintrim-reverse-engieering.html Regards … more →
TheGreenBow VPN Client tgbvpn.sys DoS and Potential Local Privilege Escalation Vulnerability.
evilcodecave wrote 3 months ago: Hi, Redirection: http://evilcodecave.blogspot.com/2009/08/thegreenbow-vpn-client-tgbvpnsys-dos.html … more →
W32/Skintrim Reverse Engieering of a Badly Coded Malware #4
evilcodecave wrote 3 months ago: Redirection: http://evilcodecave.blogspot.com/2009/08/w32skintrim-reverse-engieering-of-badly.html R … more →
SSH Malware Analysis - udp.pl, Juno and Stealth ELFs Reversing
evilcodecave wrote 3 months ago: Redirection: SSH Malware Analysis – udp.pl, Juno and Stealth ELFs Reversing Regards, Giuseppe … more →
RFI Malware Analysis - Ascrimez Hacking Kit - Notifier
evilcodecave wrote 3 months ago: Redirection http://evilcodecave.blogspot.com/2009/08/rfi-malware-analysis-ascrimez-kit.html Regards, … more →
Malware - How Works Trojan.PHPInfo
evilcodecave wrote 3 months ago: Hi, Redirection to my blogspot http://evilcodecave.blogspot.com/2009/08/malware-how-works-trojanphpi … more →
Malware Trojan-Spy.Win32.Zbot low detection rate - Fast Analysis
evilcodecave wrote 3 months ago: The usual redirection to my second blog.. http://evilcodecave.blogspot.com/2009/08/malware-zbot-low- … more →
