Just Another Geek
hugo't to know how this blog is setup!
This post describes the "behind this scene" of this blog: a mixture of AWS, hugo and terraform.
Engineering Yara rules
Unless you are an anti-virus vendor, the management of Yara rules quickly become messy in a team environment as everything becomes eventually inconsistent. This post introduces how we tackled these issues...
What has inspired me in 2019?
Last blog post was 8 years ago, I wanted to re-open this blog by giving back to those who had inspired me this year.
Linux security in 2011, or my LKML's yearly digest
This is my bookmarks about Linux kernel security in 2011.
ld-linux.so ELF hooker
I release a new tool, ldshatner, to inject code at runtime without the LD_PRELOAD hack
Introducing a bit of Web paranoia into my habits...
How do I use Google Chrome? What are my must-have extensions?
Giving an update to net2pcap
HOWTO authenticate ssh server through certificates
This is a HOWTO use ssh CA mecanism to authenticate servers.
no-release of seccomp-nurse
I released a new tool, seccomp-nurse
Linux Security, one year later...
La sécurité sous Linux, un an plus tard...
*Sorry english folks: this post is in french, ~~but it will be translated soon~~, [translated and updated post is avail...
What is really the attack surface of the kernel running a SECCOMP process?
Were our SECCOMP expectations right?
Massive reverse address DNS resolver
Dummy code to scan wide netblocks in NodeJS
Document review of Qubes OS
I had a glance to Qubes OS documents, this is my review
CVE-2010-0740: Record of death vulnerability in OpenSSL
It is a write-up of the CVE-2010-0740's vulnerability in OpenSSL
GSM 7 bits encoding
I implemented some GSM protocol parts in scapy so I had to implement the infamous "7 bits alphabet".
SECCOMP as a Sandboxing solution ?
SECCOMP is a Linux feature introduced in 2.6.23 to run untrusted executables.
No more ASLR bypass on Linux 2.6.30
While trying to exploit a local setuid application, I had the unhappiness (as an attacker) to see that the security of ...
How system calls work on recent Linux x86 glibc
This post explains how system calls are implemented on recent Linux system.
New blog, new rules
Sometimes, I receive emails asking me to translate my papers or blog posts in English; each time, I procrastinate and n...