Kartone's Reversing Garage

Malware Analysis

Project Sodinokibi

Malware Bazaar and VirusTotal platforms revealed some interesting insights into who manages Sodinokibi, from the perspective of incident response.

Malware Analysis

The p0sT5n1F3r Backdoor

P0sT5n1F3r, a stealthy Apache backdoor built to sniff HTTPS traffic. Undetected by anti-malware platforms, the module used RC4 encryption to hide its activities. Reverse engineering revealed the key, exposing a targeted payload designed to steal credit card data.

Malware Analysis

WannaCry, two years later: a deep look into its code

My own reverse engineering of a WannaCry sample.

Reverse Engineering

An extensive step by step reverse engineering analysis of a Linux CTF binary

...or in other words, when failing to reverse a CTF binary makes you loose a job

How to fix and boot Kali Linux on the SolidRun CuBox-i4Pro

In this tutorial we'll fix U-Boot on default Kali Linux 2018.4 on the SolidRun Cubox-i4Pro.

Reverse Engineering

Reverse engineering the router Technicolor TG582N

Malware Analysis

Pony stealer: a malware analysis - The sample analysis - Part three

In this post we continue the analysis of the Pony sample.

Malware Analysis

Pony stealer: a malware analysis - The sample dry run - Part two

In this post we go further into the analysis of the sample unpacked in the previous part.

Malware Analysis

Pony stealer: a malware analysis - Unpacking the sample - Part one

Vulnhub Homeless - Writeup

This writeup covers the Vulnhub CTF machine named Homeless by Min Ko Ko.