Quarkslab's blog
  • Archives

Remote Denial-of-Service on CycloneTCP : CVE-2021-26788

Date Tue 13 April 2021 By Robin David Paul Hernault Jonathan Salwan Category Vulnerability Tags fuzzing CVE-2021-26788 CycloneTCP vulnerability CVE 2021

This post is a quick vulnerability report summary for a vulnerability we found while fuzzing the TCP/IP stack CycloneTCP.

more ...

Introduction to Whiteboxes and Collision-Based Attacks With QBDI

Date Tue 18 August 2020 By Paul Hernault Category Cryptography Tags white-box QBDI collision cryptography 2020

This post is a noob-friendly introduction to whiteboxes along with the presentation and explanation of a (not-new) collision-based attack. The attack is demonstrated against a public whitebox, using QBDI to instrument and analyze the target in order to produce traces of execution.

more ...

Slaying Dragons with QBDI

Date Thu 25 January 2018 By Paul Hernault Category Program Analysis Tags QBDI instrumentation challenge program analysis 2018

This article aims to presentby analyzing an obfuscated binary using QBDI, thus showcasing some of the nice features it offers. This blog post was written last year during my internship at Quarkslab, where I discovered the wonderful (but not so simple) world of Dynamic Binary Instrumentation.

more ...

  • Quarkslab's Website

  • SOCIAL

    • twitter
    • mastodon
    • github
  • CATEGORIES

    • •Android
    • •Automotive
    • •Blockchain
    • •Challenge
    • •Containers
    • •Cryptography
    • •Exploitation
    • •File Formats
    • •Fuzzing
    • •Hardware
    • •Kernel Debugging
    • •Life at Quarkslab
    • •Math
    • •Pentest
    • •Program Analysis
    • •Programming
    • •Reverse-Engineering
    • •Software
    • •Vulnerability

© 2021 Quarkslab · Powered by pelican-bootstrap3, Pelican, Bootstrap

Back to top