Author Archives: 0xeb
Hi there, This site has been moved now to 0xeb.net. Please update your feeds accordingly.
This year I presented “Inside EMET 4.0” @ REcon Montreal. Since I was heavily involved in EMET 3.5TP till EMET 4.0, I was in a position to explain its internals. The presentation explains how the mitigations work and how they … Continue reading
This year was my first time at REcon, most of the talks were pretty genuine, I have to mention also that Montreal is an awesome city 🙂 My talk for this year was to describe how to build a tailored … Continue reading
PyHiew 0.3.0 has been released with fsPlus integration. It is now possible to edit process memory directly from Hiew. How to edit process memory with Hiew – Press F9 to toggle Hiew HEM modules – Select PyHiew and then the … Continue reading
Many times I find myself viewing a file with Hiew and at the same time wondering what kind of packer is applied to the file. Normally, I would run PEiD in parallel and check the packer signatures there. For this … Continue reading
Last week I updated PyHiew to version 0.2.0 which adds the ability to manage names in Hiew (add local/global names and comments). In this blog post I demonstrate how to use these facilities to transfer names between IDA Pro and … Continue reading