• About admin

    Poor Man’s Conversion Using Google Drive API

    by  • May 19, 2013 • Uncategorized

    I lost count of how many times I have used Google Drive to convert a document to one format and download it as another. This generally means firing up a browser, logging into a random Google account, uploading the document, re-downloading it and then deleting to save space. Sure, there are utilities to do...

    Read more →

    PDF Beacons with JavaScript openDoc API

    by  • May 2, 2013 • Uncategorized

    I saw earlier in the week that McAfee had disclosed a information leak through one of the PDF JavaScript APIs. While it wasn’t exactly spelled out, I recognized the bug description as one I had reversed back in May of 2012. Why didn’t it hit the public then? Well, it wasn’t that interesting and...

    Read more →

    Same CVE-2012-0158, Different Builder

    by  • March 11, 2013 • Uncategorized

    Over the past few weeks, I have been fortunate to watch the birth of a new CVE-2012-0158 builder that demonstrates original technique with excellent results (not for long). What is a builder you ask? Well, some attackers/researchers/whatever like ...

    Read more →

    Mandiant APT2 Report Lure

    by  • February 21, 2013 • Uncategorized

    This morning I identified a PDF with the name "Mandiant_APT2_Report.pdf" uploaded from India and was using a lure different than what Symantec just reported on. The file is password protected following the theme Xecure and myself had seen last yea...

    Read more →