Got a chance to play with antivirus on an engagement. I have tested them multiple times […]

One of the thick clients that I frequently test sign all of their executable files and DLLs and […]

[This blog post was written originally around 2014 and the tool is obsolete. Only presented here […]

If you already know what is in-memory-fuzzing and has figured out what this blog post is […]

Scenario You are given an unknown file format containing sensitive information. You have access to the […]

Quick set of notes from UWP/Windows mobile assessment Proxying I was stumped for a significant period […]

On thick client tests, you might often encounter fundamentally insecure design such as a thick client […]

 This is a stub for something more detailed that I want to write. Code-reuse in thick […]

Here is a riddle: Based on application logs, you find that the android application you are […]

Quick notes fromattacking dicom on a short engagement. DICOM defines standards for storing, transmitting, compressing and […]