Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Binary art - funky PoCs & visual docs

Ange Albertini
March 21, 2014
Technology
1
240

Binary art - funky PoCs & visual docs

Ange Albertini

March 21, 2014
Tweet

More Decks by Ange Albertini

See All by Ange Albertini
SBuD: InfoVis in InfoSec
ange
1
610
Generating Weird Files
ange
0
150
Technical challenges with file formats
ange
0
2k
Inside out - abusing archive file formats
ange
3
1.5k
Relations between archive formats
ange
0
1.6k
Beyond your studies v2
ange
1
780
Generating weird files
ange
0
3.2k
You are not an idiot
ange
1
2.5k
TimeCryption
ange
0
950

Other Decks in Technology

See All in Technology
AIQ株式会社 エンジニア向け会社紹介資料
aiqlab
0
380
なぜ NOT A HOTEL が Web3 に取り組むのか - NOT A HOTEL TECH TALK
ynunokawa
0
160
WebアプリケーションにおけるPDOの使い方入門 / phpcon odawara 2024
meihei3
2
430
テストプロセスで大事にしていること #jasstnano
makky_tyuyan
0
130
疲弊しない!AWSセキュリティ統制の考え方 #devio_osakaday1
masahirokawahara
6
5.9k
Tableau事例紹介 / Tableau Case Study of Eureka
kazuya_araki_tokyo
1
170
少数チームで挑む: SwiftUI, TCA, KMPを用いた 新規動画配信アプリ 「ABEMA Live」の開発について
tomu28
0
540
Java EE/Jakarta EEの現状と将来 ―クラウドネイティブ時代にJava EEは対応できるのか?―
takakiyo
1
100
Google Cloud の AI を支える裏側のインフラを垣間見る!
maroon1st
0
210
アクセシビリティを考慮したUI/CSSフレームワーク・ライブラリ選定
yajihum
0
230
「ふりかえりのふりかえり」をふりかえり、実のあるふりかえりにする
naitosatoshi
0
220
Cloud Native Java with Spring Boot (CNCF Aarhus, April 2024)
thomasvitale
1
130

Featured

See All Featured
How To Stay Up To Date on Web Technology
chriscoyier
782
250k
[RailsConf 2023 Opening Keynote] The Magic of Rails
eileencodes
9
8.3k
Stop Working from a Prison Cell
hatefulcrawdad
266
19k
I Don’t Have Time: Getting Over the Fear to Launch Your Podcast
jcasabona
20
1.6k
Designing for humans not robots
tammielis
247
25k
Let's Do A Bunch of Simple Stuff to Make Websites Faster
chriscoyier
501
140k
Bash Introduction
62gerente
604
210k
Designing on Purpose - Digital PM Summit 2013
jponch
110
6.4k
Build your cross-platform service in a week with App Engine
jlugia
225
17k
The Success of Rails: Ensuring Growth for the Next 100 Years
eileencodes
29
6k
Code Review Best Practice
trishagee
54
15k
RailsConf 2023
tenderlove
2
530

Transcript

  1. Insomni’hack Geneva, Switzerland Ange Albertini 2014/03/21 funky PoCs & visual

    docs

  2. http:// corkami.com reverse engineering & visual documentations

  3. boring? • file formats were supposed to be safe ◦

    public specs ◦ open-source parsers • {weirdness} == {exploits} ? • software = parse, sanitize, recover

  4. formats’ diversity 1/2 no header • COM (1982), MBR (1982)

    magic signature • none: DOL (2001) • 2: TIFF, PE • 4: most standard • >4: PNG, PDF

  5. start offset: • archives • range: PDF • mostly 0

    special properties • deprecated header: PE • variable scanning direction: PDF • multi-versions: BMP • scanned chunk: JPEG • no official names: ZIP formats’ diversity 2/2
  6. None
  7. None
  8. None
  9. None
  10. None
  11. None
  12. None

  13. quine (relay)

  14. None

  15. polyglot

  16. None
  17. None
  18. None
  19. None
  20. None

  21. schizophren

  22. None

  23. misc

  24. None

  25. 128, 217, 255, 217, 128, 38, 1, 38

  26. None
  27. None
  28. None

  29. crypto-tology: for anything crypto, ask @veorq (coz he’s awesome)

  30. None
  31. None
  32. None
  33. None
  34. None
  35. None
  36. None
  37. None
  38. None
  39. None
  40. None

  41. conclusion on binary formats

  42. On binary formats • specs far from perfect • plenty

    of fun • many consequences for infosec ◦ unforeseen attack channels
  43. None

  44. on visual docs http://pics.corkami.com http://prints.corkami.com

  45. disclaimer no awards, no studies

  46. None
  47. None
  48. None
  49. None

  50. goal create useful documentations based on reality

  51. posters self-contained • immediate ‘big picture’ • no roleplay gamebook

  52. use common sense and your own eyes

  53. None

  54. creativity? give yourself time! to fail!

  55. None
  56. None
  57. None
  58. None
  59. None

  60. define your audience lower and upper limits

  61. “you should add …” see “setting a upper limit”

  62. “too simple/simplified”? 1/ teach others, beginners, kids 2/ no more

    excuses for not knowing

  63. remove the obvious guessing doesn’t hurt

  64. None

  65. space optimal separator

  66. left right

  67. left right

  68. left right

  69. None
  70. None

  71. no unnecessary extras leave doors closed (to be opened somewhere

    else)

  72. requirements

  73. a computer a transparent tablecloth

  74. None

  75. http://src.corkami.com

  76. @jaredcatkinson’s prefetch101

  77. conclusion on visual docs

  78. On visual documentations • it doesn’t hurt • it’s not

    so hard • requires time

  79. Questions ? thank YOU ! @angealbertini ✉ [email protected]