Blog
All posts and writeups published on this site.
Report 8: Assembly and Patching
Page currently unavailable
Open →Report 7: CrackMe Static Analysis and Patching
Static analysis of a crackme executable using Cutter: string discovery, execution flow tracing, integer truncation vulnerability, and binary patching to bypass checks and extract the flag.
Open →Report 6: Inter-Process Communication (IPC)
How processes communicate inside an operating system: shared memory, message passing, synchronization problems, and classic IPC scenarios explained.
Open →Report 5: Binary, Decimal, and Hexadecimal Numbering Systems
An introduction to the three numbering systems at the core of computing: how they work, why they exist, and how to convert between them.
Open →Report 3: Windows Persistence via Run Registry Key
Educational implementation of a common Windows persistence mechanism user-level startup via the Run registry key, WinAPI calls involved, system state changes, and how defenders detect it.
Open →Report 2: Malware Static Analysis (Ukraine 2022)
Static analysis of a malware sample linked to attacks on Ukrainian organizations in 2022: hash verification, PE checks, tool findings, and correlation with CISA public research.
Open →Report 1: Malware Analysis Lab Setup
How I built an isolated malware analysis lab using VirtualBox, Windows 11, and REMnux with INetSim for simulated internet and full network isolation.
Open →