Insights and advice from Vidstrom Labs. We cover everything from application security and security testing to operating system internals, reverse engineering, and hardware programming.
It's not easy to find detailed and practical advice about the legal boundaries of reverse engineering in the EU. People who work in the field aren't lawyers, and the lawyers don't know much about the technology involved. I've worked in the field professionally for years, and I've also taken a few university-level courses in law, but please take into account that I'm no lawyer. For a US perspective, I recommend Coders' Rights Project Reverse Engineering FAQ from the EFF...
Microsoft introduced TCP port 445 with Windows 2000, and it's still in use in Windows 10 and Windows Server 2019. I'll explain what this port is for, and how it relates to security in Windows. At the same time, I'll also explain how you can disable the old TCP port 139...
There are a couple of problems that can occur when you compile your programs with Visual Studio 2005 or later. This is still relevant to Visual Studio 2019...
A few years ago, I built an IBM PC emulator. I got it to the point that it worked with an unmodified original IBM PC BIOS and could run DOS in text mode and a few graphics modes. While building it, I learned a few valuable lessons that I thought would be nice to share...
Windows Vista introduced a new export in the kernel, called DbgSetDebugPrintCallback. At the time, I realized that Microsoft had implemented a standardized way to capture DbgPrint calls. I tried to find some documentation describing the new routine, but I couldn't find anything anywhere, so I decided to do some reversing. The export is still undocumented and still present in Windows 10...
May 15, 2019 - Historical memory dumping techniques: Memory dumping with NtSystemDebugControl
May 15, 2019 - Historical memory dumping techniques: PhysicalMemory, DD, and caching issues
May 15, 2019 - Historical memory dumping techniques: Memory dumping over FireWire - UMA issues
Copyright © 2021 Arne Vidstrom. All Rights Reserved.