Security Research and the Creative ProcessI get asked pretty often about my research process, how I find research ideas and how I approach a new idea or project. I don’t find those…Aug 19, 20211Aug 19, 20211
Published inThe StartupWindows Debugger API — The End of Versioned StructuresSome time ago I was introduced to the Windows debugger API and found it incredibly useful for projects that focus on forensics or analysis…Aug 14, 2020Aug 14, 2020
WinDbg — the Fun Way: Part 1A while ago WinDbg added support for a new debugger data model, a change that completely changed the way we can use WinDbg. No more…May 21, 20202May 21, 20202
WinDbg — the Fun Way: Part 2Welcome to part 2 of me trying to make you enjoy debugging on Windows (wow, I’m a nerd)!May 21, 2020May 21, 2020
Adventures in avoiding (list) headWorking with lists is hard. I can never get them right the first time and keep finding myself having to draw them to understand how they…Oct 18, 2019Oct 18, 2019
Published inYarden_ShafirYes, More Callbacks — The Kernel Extension MechanismRecently I had to write a kernel-mode driver. This has made a lot of people very angry and been widely regarded as a bad move. (Douglas…Jan 1, 20191Jan 1, 20191
