Posts Tagged With "QEMU"

Frontdoor to the Technicolor 7210

In a previous article, I explained how to get root on the embedded Linux part of the Technicolor 7210 router by leveraging a remote code execution (RCE). This article on the other hand, will explain how one can leverage a “frontdoor” to gain the same level of access.

October 23, 2018
Exploit, Linux, Hardware Hacking, Reverse Engineering
Technicolor, Passwords, SOHO, QEMU

Reversing the TC7210 Embedded Linux Firmware

In this article I will explain how to reverse the firmware of the embedded Linux part of the Technicolor (TC) 7210 router by leveraging the usual tools of the trade.

September 30, 2018
Linux, Hardware Hacking, Reverse Engineering
Technicolor, QEMU, SOHO

Curious Fish is Curious

Testing virtualized malware sandboxes with Paranoid Fish wasn’t enough, there might be other things that could be improved to avoid malware detection. Enter Curious Fish, a tool to help fingerprinting sandboxes.

June 12, 2015
Malware, Virtualization, Windows
Cuckoo Sandbox, Emofishes, FireEye, Paranoid Fish, QEMU, VirtualBox

Reversing ArubaOS Firmware

Some time ago, I had the chance to get my hands on a ArubaOS firmware, what follows is the full process to extract all the files recreating the appliance running file system. This had the objective of fuzzing the extracted binaries in QEMU (ArubaOS management console is CGI based).

June 2, 2015
Bug Bounty, Linux, Reverse Engineering
Aruba Networks, Bugcrowd, QEMU

A Paranoid Fish and Silver Bullets

I have been doing some research (and development) around virtualized malware sandboxes, being the question, “how easy is for malware to detect such an environment” the most important one, I turned to a tool called Pafish (Paranoid Fish).

May 28, 2015
Malware, Virtualization, Windows
Cuckoo Sandbox, Emofishes, FireEye, Paranoid Fish, QEMU, VirtualBox