I am currently looking for cool & interesting university or college course. If you have any information, feel free to contact me..


« Previous Entries
20Apr

Samba eXPerience conference - Germany

Blogging, Law, Presentations, Programming

Day 1 :: Workshop
8.00 PM (yeah it’s late)
I had almost 7 hours of time travel in Train from Paris to Goettigen. It was really exhausting but it was a good opportunity to talk with pretty girls visiting Europa :)
This year, SambaXP conference hold in Freizeit Hotel (Free time in English) in Goettingen (Germany) from […]

1 Comment | add comment read the rest of this entry »
06Apr

Few words about Microsoft interoperability initiative.

Blogging, Debugging, Programming, Reverse Engineering, SandMan, Windows

As you probably know, Microsoft released last month several thousands pages of documentation about office file format and Windows protocols.
It means numerous hundreds(thousands?) of functions/algorithms documentation and pseudo-code. But, are these pseudo-function right? It looks not.
While I was reading [MS-DRSR]: Directory Replication Service (DRS) Remote Protocol Specification, I was a bit […]

3 Comments | add comment read the rest of this entry »
03Apr

X-Ways Forensics Beta 2 and hibernation file. (coincidence?)

Blogging, Forensics, Windows

X-Ways (WinHex editor) Forensics Beta 2 now includes hibernation file(hiberfil.sys) support for Windows XP 32-bit only. Please notice, Sandman library/framework is an open-source project under GNU General Public License v3 to read and write the hibernation file released 2 months ago…

Posted on Friday, Mar 28, 2008 - 1:05:
* Ability to decompress Windows […]

1 Comment | add comment read the rest of this entry »
04Mar

Physical memory access is fashion…

Blogging, Windows

These last weeks several proof of concept were published about physical memory access.
The first one (21 February 2008) was from Princeton university who published a very buzzed proof of concept in video.. This one allows to read the physical memory in a limited time.
The second one was SandMan which is hosted by myself. This one […]

No Comments | add comment read the rest of this entry »
14Aug

Patchguard 3.0 ? :)

Blogging, Windows

http://www.microsoft.com/technet/security/advisory/932596.mspx
Microsoft Security Advisory (932596)
Update to Improve Kernel Patch Protection
Published: August 14, 2007
An update is available for Kernel Patch Protection included with x64-based Windows operating systems. Kernel Patch Protection protects code and critical structures in the Windows kernel from modification by unknown code or data. This update adds additional checks to this protection for increased reliability, […]

No Comments | add comment read the rest of this entry »
« Previous Entries