Introduction Most shellcode available on the internet comprises of two portions: a payload that is usually generated by msfvenom, and C boilerplate code to call it. The compilation process is also routine, with many articles recommending to specify “execstack” to the linker, which sets the GNU_STACK…

Program stability is somewhat different with regards to fuzzing versus how we generally perceive it. Generally, we perceive program stability as — the program behaves in a consistent fashion and does not crash when we do an operation multiple times without restarting. A simple example for this would be opening…

Problem I was using DynamoRIO to do instruction tracing to troubleshoot the runtime execution stability of my program and a DLL it was loading and realised that I could not easily diff the files as the addresses were always different. The output shown in Figure 1…

What is Fuzzing? Fuzzing, or fuzz testing is an automated software testing technique that has been around for a long time. The popularity of fuzzing has greatly increased recently thanks to the accessibility of computing power, development of open-source (aka free) and easy to use fuzzing frameworks such as AFL and libFuzzer, and…

Introduction Process injection is a camouflage technique used by malware. From the Task Manager, users are unable to differentiate an injected process from a legitimate one as the two are identical except for the malicious content in the former. …