I am a programmer and reverse engineer. I like to write software utilities, designing APIs and reverse engineering interesting stuff.

My presentation at REcon 2013 – Inside EMET 4.0

This year I presented "Inside EMET 4.0" @ REcon Montreal. Since I was heavily involved in EMET 3.5TP till EMET 4.0, I was in a position to explain its internals. The presentation explains how the mitigations work and how they

My presentation at REcon 2012 Montreal

This year was my first time at REcon, most of the talks were pretty genuine, I have to mention also that Montreal is an awesome city 🙂 My talk for this year was to describe how to build a tailored

PyHiew 0.3.0 with process memory editing

PyHiew 0.3.0 has been released with fsPlus integration. It is now possible to edit process memory directly from Hiew. How to edit process memory with Hiew – Press F9 to toggle Hiew HEM modules – Select PyHiew and then the

PyHiew and PEiD

Many times I find myself viewing a file with Hiew and at the same time wondering what kind of packer is applied to the file. Normally, I would run PEiD in parallel and check the packer signatures there. For this

PyHiew: Transferring names between IDA Pro and Hiew

Last week I updated PyHiew to version 0.2.0 which adds the ability to manage names in Hiew (add local/global names and comments). In this blog post I demonstrate how to use these facilities to transfer names between IDA Pro and

Introducing PyHiew

PyHiew (open source project) is a Hiew external module (HEM) that allows users to write Python scripts that can interface with Hiew. It wraps most of the functionality present in the HEM SDK, thus allowing the users to programmatically access

