Strace fault injection

Like every summer since 2012 my lab @lse_epita is doing conferences on subjects related to system & security. This was a good occasion for me to present what I did during my GSoC with strace. If you’re interested in the other talks from my lab this year you can find them here (videos + slides). Why strace? I knew about GSoC because one of the Strace’s mentor is also a referent in the LSE. So I asked about what subject Strace had this year and the syscall fault injection got my attention. After a quick talk with Gabriel (you know,...…

How to effortlessly hide cryptosystems with GCC - Part 1

Over time while solving some CTF the following came out: by looking where does massive xor occure in binaries one can often shortcut the static analysis phase by discovering hot areas where interesting things happen. This is possible because numerous crackme exercises rely on some custom hashing or well-known one that are slightly altered. In this article we will verify this assumption and see if we can avoid it to actually find out these areas. …