Blog
All posts and writeups published on this site.
Report 9: RE-Protocol-Agent: Project Planning & Architecture
Planning an AI-assisted mobile and protocol reverse engineering tool targeting the Mercedes me Android application: architecture, static analysis design, protocol capture workflow, and ethical boundaries.
Open →Report 10: RE-Protocol-Agent: Results, Course Correction & Limitations
Implementation results for RE-Protocol-Agent: static analysis pipeline execution, dynamic emulator workflow issues, course correction after a misconfigured launch, and what remains for protocol validation.
Open →Report 8: Assembly Password Verification & Binary Patching
Implementing a password verification program in x86 32-bit assembly using SASM, then analyzing and patching the compiled binary in Cutter to bypass authentication entirely.
Open →Report 7: CrackMe Static Analysis and Patching
Static analysis of a crackme executable using Cutter: string discovery, execution flow tracing, integer truncation vulnerability, and binary patching to bypass checks and extract the flag.
Open →Report 6: Inter-Process Communication (IPC)
How processes communicate inside an operating system: shared memory, message passing, synchronization problems, and classic IPC scenarios explained.
Open →Report 5: Binary, Decimal, and Hexadecimal Numbering Systems
An introduction to the three numbering systems at the core of computing: how they work, why they exist, and how to convert between them.
Open →Report 3: Windows Persistence via Run Registry Key
Educational implementation of a common Windows persistence mechanism user-level startup via the Run registry key, WinAPI calls involved, system state changes, and how defenders detect it.
Open →Report 2: Malware Static Analysis (Ukraine 2022)
Static analysis of a malware sample linked to attacks on Ukrainian organizations in 2022: hash verification, PE checks, tool findings, and correlation with CISA public research.
Open →Report 1: Malware Analysis Lab Setup
How I built an isolated malware analysis lab using VirtualBox, Windows 11, and REMnux with INetSim for simulated internet and full network isolation.
Open →