Thursday, June 25, 2009

Day 3 of the Sourcefire VRT Exploit Development class

First two days are a crash course in assembly programming, Intel processor op codes, memory locations, yada, yada, yada. Good background but one wonders how much practical use this will be? It is fun to learn how computers work on the inside but really if you want to play in this area you need to know all the ins and outs and tricks.

We started crashing the stack yesterday, looking forward to more of that today. I'd like to think that in two weeks I'll remember some of this but to be realistic - probably not. Oh well...

On a side note. The Macbook Pro could really use Home and End keys. I don't even think there's a keyboard shortcut for either of these two functions. Bah!


Tuesday, June 23, 2009

Fundamentals of Exploit Day 1

Well, class today went well, at least I kept up with about 70% of the concepts. Hopefully I'll be able to remember them long enough to do the lab tomorrow. Could this be a new hobby. Would that there were some higher purpose to this training and it not be forgotten soon after. Me thinks it will take constant practice/refresher to keep from losing the skills gained. I also think the Ambien I took about 45 minute ago is making it really hard to type and construct coherent sentences. So, I will sign off for tonight, sleep and wake a better person for doing so.

Good night all!
Big Al

Thursday, June 18, 2009


Well, I got SGUIL and Snort running this week. I decided to name this block "It Looked So Easy" because that's usually how software installations go with me. SGUIL looked cool in the demo interface so I thought I'd give it a shot. Six hours later it was finally running. Whew! I must say it does have a very cool interface though for network intrusion analysts. More to follow.

Oh and welcome to my blog. This will likely just be to myself but you never know...