Aerosol Posted March 22, 2015 Report Share Posted March 22, 2015 1 With what shall we commune this evening?Neighbors, please join me in reading this eighth release of the International Journal of Proof of Concept orGet the Fuck Out, a friendly little collection of articles for ladies and gentlemen of distinguished ability andtaste in the field of software exploitation and the worship of weird machines. If you are missing the firstseven issues, we the editors suggest pirating them from the usual locations, or on paper from a neighborwho picked up a copy of the first in Vegas, the second in S˜ao Paulo, the third in Hamburg, the fourth inHeidelberg, the fifth in Montr´eal, the sixth in Las Vegas, or the seventh from his parents’ inkjet printerduring the Thanksgiving holiday.We begin our show tonight in Section 2 with something short and sweet, an executable poem by MorganReece Phillips. Funny enough, 0xAA55 is also Pastor Laphroaig’s favorite number!We continue in Section 3 with another brilliant article from Micah Elizabeth Scott. Having bought aBD-RW burner, and knowing damned well that a neighbor doesn’t own what she can’t open, Micah reverseengineered that gizmo. Sniffing the updater taught her how to dump the firmware; disassembling thatfirmware taught her how to patch in new code; and, just to help the rest of us play along, she wrapped allof this into a fancy little debugging console that’s far more convenient than the sorry excuse for a JTAGdebugger the original authors of the firmware most likely used.In Section 4, Pastor Laphroaig warns us of the dangers that lurk in trusting The Experts, and of onesuch expert whose witchhunt set back the science of biology for decades. This article is illustrated by BorisEfimov, may he rot in Hell.In Section 5, Eric Davisson describes the internals of TCP/IP as a sermon against the iniquity of theabstraction layers that—while useful to reduce the drudgery of labor—also cloud a programmer’s mind andkeep him from seeing the light of the hexdump world.Ange Albertini is known to our readers for short and sweet articles that quickly describe a clever polyglotfile in a page or two. In Section 6, he finally presents us with a long article, a listing of dozens of nifty tricksthat he uses in PoCkGTFO, Corkami, and other projects. Study it carefully if you’d like to learn his art.In Section 7, BSDaemon and Pirata extend the RDRAND trick of PoCkGTFO 3:6—with devilish cunningand true buccaneer daring—to actual Intel hardware, showing us poor landlubbers how to rob not onlyunsuspecting virtual machines but also normal userland and kernel applications that depend on the newAES-NI instructions of their precious randomness—and much more. Quick, hide your AES! Luckily, ourneighborly pirates show how.Section 8 introduces us to Ryan O’Neill’s Extended Core File Snapshots, which add new sections to thefamiliar ELF specification that our readers know and love.Recently, Pastor Laphroaig hired Count Bambaata on as our Special Correspondent on NASCAR. Afterhis King Midget stretch limo was denied approval to compete at the Bristol Motor Speedway, Bambaata fledto Fordlandia, Brazil in a stolen—the Count himself says “liberated”—1957 Studebaker Bulletnose in searchof the American Dream. When asked for his article on the race, Bambaata sent us by WEFAX a collectionof poorly redacted expense reports1 and a lovely little rant on Baudrillard, the Spirit of the 90’s, and a worldof turncoat swine. You can find it in Section 9.Section 11 is the latest from Ben Nagy, a peppy little parody of Hacker News and New–Media Web 2.0Hipster Fashion Accessorized Cybercrime in the style of Gilbert and Sullivan. Sing along, if you like!Finally, in Section 12 we do what churches do best and pass around the old collection plate. We don’tneed alms of Dollars or Euros, so send those to Hackers for Charity in Uganda.2 Rather, we pass the plateto ask for your doodles and your sketches, your crazy ideas that work well enough to prove the concept, wellenough to light up the mind, well enough to inspire the next lady or gentleman to do something clever andstrange.Read more: http://www.exploit-db.com/docs/pocorgtfo07.pdf Quote Link to comment Share on other sites More sharing options...
