A few months ago I took a look at one of the more popular exploit kits and ripped into how it did PDF generation. I thought it was weak, easily identifiable and done without much thought. There was much more that could have been done to obfuscate ...
Read more →A couple months back I remember reading a post from Symantec about visualizing entropy to identify infected Microsoft documents. At the time it didn't really dawn upon me to visualize the PDF samples I had, but I did take a brief look into how ent...
Read more →I finally got a chance to sit down and spend some time reading about Adobe X and their newly introduced sandbox. After finishing the 4 part series, FAQ and guide sections, I had to applaud the efforts put forth by Adobe and couldn't help but think...
Read more →