Stackjacking Your Way to grsecurity/PaX Bypass - A Response in Text and Code
16 April, 2011 - 18:01 — RaTFor those not in the know, there was an interesting talk called "Stackjacking Your Way to grsecurity/PaX Bypass" about "bypassing" a grsecurity/PaX Linux kernel that was presented at both HES and Infiltrate. The confusing thing about the talk was that it's using a vulnerability type that has been mentioned by PaX Team and Spender many times (as not being protected against). In other words, I don't see it bypassing any of the features of grsecurity/PaX - but rather just using an attack that wasn't protected against. Spender gave a very interesting response which includes both a brief discussion and some fancy new features.
Geek Squad Acquires SOLDIERX!
1 April, 2011 - 01:39 — AmpAfter a considerable amount of negotiations, I am proud to announce that that SoldierX has officially become a part of Geek Squad. In recent months, we were contacted by Geek Squad, stating an interest in our services. As other members of the crew were involved with other tasks, I was asked to handle this process on behalf of RaT. Yesterday, the deal was finalized and we at SoldierX are very excited about working with Geek Squad as their security component.
Kayin Releases 16-bit Rijndael Educational Project
26 February, 2011 - 02:42 — RaTIn the spirit of educating our community, Kayin has released a 16-Bit Rijndael Project. Much like neotek's webserver project, this is not designed for production use - but rather for educational purposes (NOTE: neotek's webserver could be used for production in embedded systems). Kayin's 16-bit Rijndael only has a 16 bit blocksize and 16 bit key for the purpose of being easy to follow and debug. It is an ideal project to assist users with practicing linear/differential cryptanalysis. We suggest that you check it out. We're hoping to churn out at least one new project in SX Labs per month. Last month we gave you updates to Agent Steal and OFACE.
SX Webserver released, Server Upgrades
25 February, 2011 - 03:17 — RaTFirst of all, I would like to announce neotek's release of the SX Webserver. It's a simple event driven TCP webserver for educational purposes or embedded devices with very limited resources. I really appreciate neotek taking the ball and coding something for us, particularly since he's our scene guy and really isn't expected to do any programming projects. If you're interested in the basics of how a webserver works, check it out! neotek has stated that if there is enough interest he will continue to add enhancements and possibly even port it to Windows or other operating systems.
We're back... sorta... and news about Shane Tarleton (aka COSCStudent)
11 February, 2011 - 03:23 — RaTHello again everybody, we are somewhat back - although we are still working out some bugs. Sorry about the "seized by ICE" message. We were getting overwhelmed with emails so we decided to put that up. It did do us some good though, we were able to uncover a few bad apples such as Shane Tarleton (aka COSCStudent). The guy that disseminated MRI to us on multiple occasions and then started the OFACE project (due to how much he hated Geek Squad) was on the Geek Squad private forums declaring our site going down a huge "win". He also portrayed us as some sort of computer repair company, which we aren't. Sorry Shane, none of us clean mouse balls for a living like you - we all work in programming and security. Shane - in the future be careful about playing both sides even if it is on a private forum. We have eyes everywhere.
