Contact Us Resources Services About Us Home

• Research
• Projects

Research

Below is a listing of research authored by or contributed to by employees of Leviathan Security Group

Flirting with MIME Types

Author: Blake Frantz
Abstract: An increasing number of websites are providing file upload capabilities to web users, following the success of social networking sites that encourage their user community to upload arbitrary files to be shared with other users of the site. File upload features increase the risk to the hosting site and its users. ... [more]

Improving Software Security Analysis using Exploitation Properties

Author: Matt Miller
Abstract: Reliable exploitation of software vulnerabilities has continued to become more difficult as formidable mitigations have been established and are now included by default with most modern operating systems. ... [more]

Introduction to Reverse Engineering Win32 Applications

Author: Blake Frantz
Abstract: During the course of this paper the reader will be (re)introduced to many concepts and tools essential to understanding and controlling native Win32 applications through the eyes of Windows Debugger (WinDBG). ... [more]

Reducing the Effective Entropy of GS Cookies

Author: Matt Miller
Abstract: This paper describes a technique that can be used to reduce the effective entropy in a given GS cookie by roughly 15 bits. ... [more]

Memalyze: Dynamic Analysis of Memory Access Behavior in Software

Author: Matt Miller
Abstract: This paper describes strategies for dynamically analyzing an application's memory access behavior ... [more]

Implementing a Custom X86 Encoder

Author: Matt Miller
Abstract: This paper describes the process of implementing a custom encoder for the x86 architecture. ... [more]

Preventing the Exploitation of SEH Overwrites

Author: Matt Miller
Abstract: This paper proposes a technique that can be used to prevent the exploitation of SEH overwrites on 32-bit Windows applications without requiring any recompilation. ... [more]

Improving Automated Analysis of Windows x64 Binaries

Author: Ken Johnson, Matt Miller
Abstract: As Windows x64 becomes a more prominent platform, it will become necessary to develop techniques that improve the binary analysis process. ... [more]

Exploiting the Otherwise Non-exploitable on Windows

Author: Ken Johnson, Matt Miller
Abstract: This paper describes a technique that can be applied in certain situations to gain arbitrary code execution through software bugs that would not otherwise be exploitable, such as NULL pointer dereferences. ... [more]

Bypassing PatchGuard on Windows x64

Author: Matt Miller, Ken Johnson Abstract: The version of the Windows kernel that runs on the x64 platform has introduced a new feature, nicknamed PatchGuard, that is intended to prevent both malicious software and third-party vendors from modifying certain critical operating system structures. ... [more]

 

© Copyright 2008 Leviathan Security Group, Inc.