:[ www.piotrbania.com ]:

» Disclaimer:
	Author takes no responsibility for any actions with provided information or codes. The copyright for any material created by the author is reserved. Any duplication of codes or texts provided here in electronic or printed publications is not permitted without the author's agreement.

» News:
		BLOG.PIOTRBANIA.COM (UPDATES - 2012)

» Advisories:
	15/03/2005 -	OllyDbg OutputDebugString Format String Vulnerability
	15/03/2005 -	DataRescue Interactive Disassembler Pro Debugger Format String Vulnerability
	19/04/2005 -	RealNetworks RealPlayer/RealOne Player/Helix Player Remote Heap Overflow
	13/05/2005 -	OllyDbg "INT3 AT" Format String Vulnerability
	26/05/2005 -	Alwil Software Avast Antivirus Device Driver Memory Overwrite Vulnerability
	29/05/2005 -	Compuware Softice (DbgMsg driver) Local Denial Of Service
	13/10/2005 -	Kerio Personal Firewall and Kerio Server Firewall FWDRV driver Local denial of service
	04/11/2005 -	Apple QuickTime Player Remote Integer Overflow (1)
	04/11/2005 -	Apple QuickTime Player Remote Integer Overflow (2)
	04/11/2005 -	Apple QuickTime Player Remote Denial Of Service
	04/11/2005 -	Apple QuickTime PICT Remote Memory Overwrite
	10/01/2006 -	MS06-002 cancelled
	15/02/2006 -	Kadu Remote Denial Of Service Fun
	09/09/2006 -	Apple QuickTime Player H.264 Codec Remote Integer Overflow
	09/01/2007 -	Adobe Reader Remote Heap Memory Corruption - Subroutine Pointer Overwrite
	06/03/2007 -	Apple QuickTime Player Remote Heap Overflow
	06/04/2007 -	AOL Nullsoft Winamp LIBSNDFILE.DLL Remote Memory Corruption (Off By Zero)
	06/04/2007 -	AOL Nullsoft Winamp S3M Module "IN_MOD.DLL" Remote Heap Memory Corruption
	06/04/2007 -	AOL Nullsoft Winamp IT Module "IN_MOD.DLL" Remote Heap Memory Corruption
	14/08/2007 -	Microsoft Windows Media Player Skin Parsing Size Mismatch Heap Overflow Vulnerability
	14/08/2007 -	Microsoft Windows Media Player Malformed Skin Header Code Execution Vulnerability
	25/10/2007 -	RealNetworks RealPlayer/RealOne Player/Helix Player Remote Heap Corruption
	25/10/2007 -	RealNetworks RealPlayer/RealOne Player/Helix Player Remote Memory Corruption
	16/04/2009 -	Microsoft Windows DirectX MJPEG Decoder Remote Heap Corruption
	16/04/2009 -	VMware Workstation IO Port Request Virtualized Machine Denial Of Service

» Articles:
	25/02/2005 -	Antidebugging for (m)asses - protecting the env.
	31/03/2005 -	Vision of danger: The Firefox Greasemonkey
	29/06/2005 -	Fighting EPO Viruses - exclusive for SecurityFocus
	02/08/2005 -	NT shellcodes prevention demystified - published in PHRACK#63
	04/08/2005 -	Windows Syscall Shellcode - exclusive for SecurityFocus
	15/08/2005 -	Playing with RDTSC
	16/10/2005 -	Exploiting Windows Device Drivers Whitepaper / ARTICLE BINARY CODE PACKAGE
	06/02/2007 -	Bypassing the breakpoints with file "streams"
	01/06/2007 -	TI89 Titanium calculator corner plus a plenty of not really useful things.
	01/06/2007 -	Aslan Metamorphic Engine Corner plus some demos.
	18/05/2009 -	Dynamic Data Flow Analysis via Virtual Code Integration (aka The SpiderPig case) + SpiderPig Project Page
	25/05/2009 -	Generic Unpacking of Self-modifying, Aggressive, Packed Binary Programs
	10/06/2009 -	Evading network-level emulation
	05/10/2009 -	SMB2: 351 Packets from the Trampoline
	08/11/2009 -	Using MATLAB and Mathcad for solving (mesh current) equations
	23/08/2010 -	Security Mitigations for Return-Oriented Programming Attacks
	06/09/2010 -	JIT spraying and mitigations
	10/05/2011 -	Securing The Kernel via Static Binary Rewriting and Program Shepherding
	01/09/2011 -	Fast, Reliable and Runtime Protection Method Against Table Index Overflows
	01/01/2012 -	Mitigating Return-Oriented Programming Attacks and Other Exploitation Attempts via Secure API Execution
	01/03/2012 -	Securing The Kernel Via Static Binary Rewriting, Program Shepherding and Partial Control Flow Integrity

» Stuff:
	25/02/2005 -	Finddll.c - searches are running processes for module occurrency.
	15/03/2005 -	OllyPOC.zip - proof of concept for OllyDbg OutputDebugString vulnerability
	15/03/2005 -	IdaPOC.zip - proof of concept for IDA Debugger vulnerability
	26/05/2005 -	AvastPOC.zip - proof of concept for Avast vulnerability
	29/05/2005 -	SicePOC.zip - proof of concept for Softice vulnerability
	29/06/2005 -	EPOS heuristic virus scanner - SOURCE / BINARY
	02/08/2005 -	Protty library - Windows NT buffer overflow protection library (proof of concept / prototype)
	04/08/2005 -	Windows XP SP1 syscall shellcode (POC) - full sources of shellcode described on SecurityFocus.
	08/08/2005 -	Badf00d Polymorphic Engine
	14/08/2005 -	Antid - Anti IsDebuggerPresent debugger detection library - SOURCE / BINARY
	14/08/2005 -	Efilter - automatic exception reporting utility - SOURCE / BINARY / SCREENSHOT
	16/08/2005 -	Simple RDA (RANDOM DECRYPTION ALGORITHM) example
	24/08/2005 -	Debugger "On-Attach" detection method
	01/09/2005 -	TAPION Polymorphic Decryptor Generator *NEW - 16/09/2005 - TAPiON v.0.1c*
	03/09/2005 -	Debugger "On-Attach" detection method TWO
	22/09/2005 -	Protty v.01A (beta) - shellcode execution protection library for Windows NT based systems *NEW*
	11/11/2005 -	Utility: KiServiceTable address finder by xrefs scanning.
	31/01/2006 -	DISIT - OPEN SOURCE DISASSEMBLER ENGINE released. 21/04/2006 UPDATED
	25/10/2007 -	Aslan Metamorphic Engine Corner
	20/03/2008 -	Nid4Spid GAME for ST7 Microcontrollers
	15/07/2008 -	Kon-Boot - ultimate linux hooking utility *UPDATE: 16/04/2009 NOW SUPPORT WINDOWS SYSTEMS*
	16/09/2009 -	VMware CloudBurst - VMware Guest to Host Escape Exploit + HACKTRO
	16/08/2010 -	SMB2 remote exploit for Vista SP1/SP2 + HACKTRO