Internship Offers for the 2023-2024 Season The internship season is back at Quarkslab! Our internship topics cover a wide range of our e... 2023-10-16 06:0:0 | 阅读: 25 | 收藏 | Quarkslab's blog - blog.quarkslab.com internship assignment gvisor quarkslab python

QBinDiff: A modular diffing toolkit This blog post presents an overview of QBinDiff, the Quarkslab binary diffing tool officially... 2023-10-12 06:0:0 | 阅读: 42 | 收藏 | Quarkslab's blog - blog.quarkslab.com qbindiff similarity binexport diffing secondary

Let’s Go into the rabbit hole (part 1) — the challenges of dynamically hooking Golang programs Golang is the most used programming language for developing cloud technologies. Tools such as... 2023-10-3 06:0:0 | 阅读: 17 | 收藏 | Quarkslab's blog - blog.quarkslab.com trampoline hooking toupper loaded

Reversing Windows Container, episode I: Silo This article presents the internals of Windows Container. IntroductionThis article is the... 2023-9-21 06:0:0 | 阅读: 14 | 收藏 | Quarkslab's blog - blog.quarkslab.com mkkey windows silo containers

Debugging Windows Isolated User Mode (IUM) Processes In this blog post we discuss how to debug Windows' Isolated User Mode (IUM) processes, also k... 2023-9-7 06:0:0 | 阅读: 8 | 收藏 | Quarkslab's blog - blog.quarkslab.com hvcall memory ium hypercall

Diving into Starlink's User Terminal Firmware This blog post presents an overview of Starlink's User Terminal runtime internals, focusing o... 2023-8-29 06:0:0 | 阅读: 26 | 收藏 | Quarkslab's blog - blog.quarkslab.com dish frontend processes software memory

Breaking Secure Boot on the Silicon Labs Gecko platform In this blog post, we present a new vulnerability on the Gecko Bootloaderfrom Silicon Labs m... 2023-8-21 06:0:0 | 阅读: 10 | 收藏 | Quarkslab's blog - blog.quarkslab.com gbl bootloader mutate firmware silicon

Android Data Encryption in depth Join us in our journey into modern Android's Data Encryption at rest, in which we study how i... 2023-8-14 06:0:0 | 阅读: 18 | 收藏 | Quarkslab's blog - blog.quarkslab.com weaver security chip encryption

For Science! - Using an Unimpressive Bug in EDK II to Do Some Fun Exploitation In this blog post we'll see a technique to gain code execution in SMM from a very limited wri... 2023-6-23 06:0:0 | 阅读: 17 | 收藏 | Quarkslab's blog - blog.quarkslab.com nvs smm efi smram smi

Security audit of Mithril Security BlindAI Mithril Security engaged a collaboration with Quarkslab to perform an audit of the Blind... 2023-6-13 06:0:0 | 阅读: 15 | 收藏 | Quarkslab's blog - blog.quarkslab.com blindai security mithril enclave sgx

PASTIS For The Win! In this blog post we present PASTIS, a Python framework for ensemble fuzzing, developed at Qu... 2023-5-17 06:0:0 | 阅读: 14 | 收藏 | Quarkslab's blog - blog.quarkslab.com pastis broker fsm dse software

Introducing TritonDSE: A framework for dynamic symbolic execution in Python We present TritonDSE, a new tool by Quarkslab. TritonDSE is a Python library, built on top of... 2023-5-2 06:0:0 | 阅读: 18 | 收藏 | Quarkslab's blog - blog.quarkslab.com tritondse exploration dse symbolic python

Android greybox fuzzing with AFL++ Frida mode This article is about greybox fuzzing of userland targets that can be encountered in Android... 2023-4-27 06:0:0 | 阅读: 36 | 收藏 | Quarkslab's blog - blog.quarkslab.com jni qb blogfuzz fuzzer

A gentle introduction to Microsoft OMI and how to crash it This article provides a brief overview of how Microsoft Open Management Infrastructure (OMI)... 2023-3-31 06:0:0 | 阅读: 18 | 收藏 | Quarkslab's blog - blog.quarkslab.com wsman microsoft omi quarkslab zt

Our Pwn2Own journey against time and randomness (part 1)" A journey into the Pwn2Own contest. Part 1: Netgear RAX30 router WAN vulnerabilities Quark... 2023-3-24 07:0:0 | 阅读: 17 | 收藏 | Quarkslab's blog - blog.quarkslab.com curlopt firmware hnd netgear setopt

Audit of Falco, the open-source cloud-native runtime security Falco's maintainers, with support from Cloud Native Computing Foundation, engaged with Quarks... 2023-3-22 07:0:0 | 阅读: 6 | 收藏 | Quarkslab's blog - blog.quarkslab.com falco scap memory libscap libsinsp

Vulnerabilities in the TPM 2.0 reference implementation code In this blog post we discuss the details of two vulnerabilities we discovered in the Trusted... 2023-3-14 07:0:0 | 阅读: 13 | 收藏 | Quarkslab's blog - blog.quarkslab.com tpm quarkslab microsoft tpms

Dark Phoenix: a new White-box Cryptanalysis Open Source Tool We are releasing a new cryptanalysis tool based on a known paper but without known open sourc... 2023-2-28 07:0:0 | 阅读: 21 | 收藏 | Quarkslab's blog - blog.quarkslab.com phoenix encodings dfa faults mixcolumn

Post-Exploitation: Abusing the KeePass Plugin Cache This blog post presents a post-exploitation approach to inject code into KeePass without proc... 2023-1-26 07:0:0 | 阅读: 10 | 收藏 | Quarkslab's blog - blog.quarkslab.com keepass plgx security passwords database

Digging into the OCI Image Specification The OCI Image Specification is the core concept behind container images. However, not much is... 2022-11-24 07:0:0 | 阅读: 19 | 收藏 | blog.quarkslab.com blobs oci containerd mediatype alpine