Meta
December 2024 M T W T F S S 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 Blogroll
IP info
Programs
Category Archives: EN
Broken love: letting my IDA maintenance period run out next year
With IDA 9.0 Hex-Rays says they are switching to a subscription only model. This was already threatened to existing customers before — roughly two or three years ago — and of course it is being sold with totally great benefits … Continue reading
Tomorrow it will be decided if I agree with Victoria Nuland
… and her infamous line “Fuck the EU”. Why? Because tomorrow the decision will be made whether the EU introduces surveillance for what’s meant to be private communication. Originally the voting was supposed to be done today (2024-06-19). More information … Continue reading
Posted in EN, Human Rights, IT Security, Opinion, Privacy
Tagged privacy, surveillance
Leave a comment
Reminder to myself
env GIT_CONFIG_NOSYSTEM=true GIT_CONFIG_COUNT=0 GIT_CONFIG_GLOBAL=/dev/null git … can be used to suppress reading the configuration file. Useful with this error: BUG: refs.c:2083: reference backend is unknown error: git-remote-https died of signal 6 … which is caused by a particular configuration option.
The end of international law?
Well, I guess the inaction of the UNSC in the case of the Israeli bombing of the Iranian embassy in Damascus emboldened Ecuador to raid the Mexican embassy. I wonder if future historians — provided there will be any — … Continue reading
Posted in EN, Opinion, Peace
Leave a comment
Migrating data from 2 TB SSD to 4 TB SSD with iODD ST400 drive enclosure
Linux is my main system, but I prefer using NTFS for various use cases and in fact some use cases require something like NTFS. The ST400 is the successor of several Zalman-rebranded iODD devices which bring a similar feature set. … Continue reading
NATO’s open door policy
Now, while any small town club is able to reject applications for membership and scholarships are tied to preconditions — and ignoring for a minute that NATO even refused to talk about Russia’s security interests, including its unwillingness to accept … Continue reading
Undocumented MSVC
Some ongoing research. For obvious reasons I can only share results and tools, but not actual sample data.
FIDO2 für Kreditkarte (Sparkasse). Aber nicht mit Linux!
Im letzten Jahr hatte ich eine Kreditkarte bei der Sparkasse beantragt — Mastercard war das einzige was im Angebot war, aber gut. Also beantragt und direkt nach Erhalt einmal benutzt. Schon der zweite Versuch ging in die Hose, da aufgrund … Continue reading
Floating point precision … printf-VS2013-vs.-later-VS-version edition
As developers we probably all know that floating point precision can be an issue . It can haunt us in various ways. Generally when we talk about precision, though, we probably don’t have in mind printf as the first thing. … Continue reading
Enabling RSA (with SHA-1) again in OpenSSH server
The sshd version that ships with Ubuntu 22.04 seems to have abandoned RSA authentication. Well, that’s not true. It’s about the hash algorithm used by the “old” protocol by the name ssh-rsa, which is deemed insecure by today’s standards. RSA … Continue reading
Bash training I gave some years ago
This is a Bash training I gave some years ago, which I had — however — prepared on my own time. Some parts may be outdated. Others may need some touching up, but in general I think it can be … Continue reading
That trick I learned with the Visual Studio debugger
Alright, I’ll admit it it: I am in team WinDbg. Sure, I’ll happily use WinDbgX — the “Preview” version of the “new” WinDbg which has been in preview for ages now — but I always was a bit unhappy with … Continue reading
IDA and Hex-Rays decompiler keyboard shortcut cheat sheet
Find it on GitHub: assarbad/some-latex/releases/tag/v1.0-ida-cheat-sheet LaTeX source can be found in the repository itself.
Reminder to self: IDA load all sections
Just a reminder to myself. Edit cfg/pe.cfg inside the IDA installation folder to configure the PE loader to load all sections: // Always load all sections of a PE file? // If no, sections like .reloc and .rsrc are skipped … Continue reading
ASR rule “Block Win32 API calls from Office macros”
Microsoft says it’s fixed. It may be, but I think there’s more to it than meets the eye. Colleagues of mine noticed that, aside from shortcuts disappearing, Defender also started acting up on TortoiseProc.exe from TortoiseSVN. Notably, checkouts would fail … Continue reading
dumbin.exe, editbin.exe, lib.exe …
They’re all just slim wrappers around the actual link.exe, not using a common DLL or so, but actually invoking: dumpbin.exe simply invokes “link /dump” and failing that “link.exe link /dump” editbin.exe simply invokes “link /edit” and failing that “link.exe link … Continue reading
What does adding masm targets do under the hood
If in Visual Studio when you right-click a C/C++-project in the Solution Explorer, you choose Build Customizations…, the following dialog will be presented: If you check the item for masm, the following changes will be done to your .vcxproj file: … Continue reading
Certum Open Source Code-Signing certificate
In the past I used a variety of code-signing CAs. But for a few years now I am using Certums affordable offer for Open Source developers. Let’s assume you already have their latest hardware and merely want to renew or … Continue reading
PowerShell
Within the last two years or so I have started to use more and more PowerShell scripting at work and for my private administration tasks on Windows. The thing I find coolest about PowerShell is that you can tap into … Continue reading
FLOSS-Developers gone bonkers?
So as I understand under the hashtag #StandWithUkraine some idiots have started supply-chain attacks, targeting Russian and Belarussian targets. I’ll leave the exercise to find the respective repos on GitHub to the inclined reader. Has everyone gone bonkers now? Aside … Continue reading