logs archiveIRC Archive / Undernet / #asm / 2006 / April / 10 / 1
rod
well at least they go to the stadium
and since tigres plays in libertadores, they get nice southamerican environment hehe
brb subway
brb, out for a walk
exb
http://the-kiter.de/fotos/mag.jpg
rod
w0ha
who said 11C is not cold
EwIck
<-
11C is pretty warm
for a fridge, anyway
rod
lol
well i even thought 2C is fair here, cause i only was out 20secs, from home to car...
but now i had a walk about 2kms
hey, i was freezin haha
it was a nice walk
:)
i`like the "woods" sight
EwIck
huh
I can't see a damn thing
quake 4 sort of crashed and I'm stuck in spectating mode
I can't even switch back to windows
hahaha
brb. reboot
hahah I knew I was typing in mIRC
I wasn't sure but I took a shot
a'ight, I'll try to play once more
rod
mmm
_sin
tiocsti
you were totally right about ida 5
i downloaded a demo today and was impressed enough with the graphs that i ordered a copy
EwIck
hey _sin
how are you
         

_sin
lo EwIck
alright i suppose.
you?
EwIck
still cracking viruses?
I'm incredibly good
_sin
well mostly either backdoors/trojans or generic spyware
but yea
its what my job has 100% turned into
EwIck
that's gotta be a fun job, I guess
_sin
eh
arguably
its more interesting than some
EwIck
uh-oh
_sin
but it gets old quick
its mostly the same tricks over and over again
what you find on crackmes.de is more interesting
which is what i spent my day doing at work today ;]
EwIck
that's a bit out of my league
or my interest, to be correct
_sin
nah
that may be correct
but not out of your skillset
assembly is assembly is assembly
EwIck
that's the thing
_sin
i had a guy a work trying to encrouch into a position on my team
EwIck
I've been here for around 10 years I don't even know asm :]
_sin
and he kept telling my boss that he knew assembly, but he needed reverse engineering training
i find that hard to believe?
EwIck
I can read assembly
neonfreon
if u know assembly and like how the binary is organized
ur pretty much chill for reverse engineering
_sin
and knowing, to some degree, how the binary is organized should come from assembly programming
thats basically all it is
reading assembly
sometimes i have to write clients for backdoors
or programs to decrypt network traffic from pcap dumps
but mostly, just reading assembly
EwIck
well, I did read the intel manuals
so I guess I know assembly
_sin
aside from that its mostly know what the windows api does
EwIck
reading intel manuals on saturday nights...
(boy do I need a gf)
_sin
like I learned today what User32::BlockInput() does
its not fun.
         

EwIck
ah, now that's something I happen to know quite a bit about
win32's my bi**h
_sin
well the api really depends on your target, but since everything is basically windows malware, its all win32
but really, its not hard
its just tedious
EwIck
and expensive in tylenol right
_sin
only when it doesn't work
i could never write serial/key generators
that crap drives me up a wall
EwIck
it's not that bad
_sin
like the answer is 34234839489234544098, now you have to find all the numbers in between that eventually through all the operations equals that
EwIck
keygens use common algorithms
_sin
one of the keyme's/crackme's i was playing with today had an algorithm like a+b*b+c*c+d*d+e*e = key-part1
if i was motivated enough, i could figure it out
ive made whole pieces of paper look like crazy abacuses
doing all these binary compares and such
i just prefer not to have to do that, if possible
EwIck
well it sounds like that job is slowly driving you crazy
now help me do this evaluation I have to do about my supervisor
(yuck)
_sin
well i know enough now that i could probably write an incredible worm for windows
i just hate the api
haha
EwIck
I love it
_sin
APOLOGIZE FOR ITS UGLY NATURE
EwIck
I love it
_sin
hehe
EwIck
honesly
_sin
i think its just because i grew up on posix based systems
EwIck
win32 is just the best fu*king system I've ever worked on
_sin
it is a very nice api functionality wise
EwIck
(NT and up, anyway)
_sin
i just wish it wasn't so damned ugly
like if i cant find a line of code on a line
i typically think im trying to make the line too complex
EwIck
the only thing I hate about windows is that too few programmers are actually qualified to program for win32
but they do anyway, and we get crappy software, making windows very unstable
_sin
but win32 forces you to use ten lines for one line
and 20 lines to get a meaninful error message
EwIck
get a 24" monitor
_sin
still wouldnt fit many of the functions and their arguments
EwIck
that's true
_sin
however
after years of bigotry
EwIck
I wouldn't have made CreateProcess with that many parameters
_sin
ive finally realized windows isn't all that bad
EwIck
I'm never going back to posix
ever
mainly because unicode is lacking
_sin
i still want to know why on earth you would really need CreateRemoteThread() in legitimate circumstances?
wide/multibyte/etc characters are supported IIRC?
it has to be
EwIck
maybe, but not unicode
_sin
you have iconv/locales/etc in posix
hrm i think you're incorrect there
(Action) sighs
EwIck
well.. I haven't been in that land in years
_sin
i have the posix manuals at work
EwIck
and I mean, YEARS
_sin
i try very hard if possible
to make the program cross platform, meaning that it will run on both windows and unix
EwIck
ah, it supports UTF-8
that's a start
_sin
by just writing my code to stick to the standards
not always possible of course, especially when you get into networking
that is one place though that i will say that win32 has an obvious advantage over every other api ive played with
EwIck
we have a library at work to do that, and we have guys working on it full time
_sin
unicode/wide/multibyte/etc support
EwIck
though it does not (and will never) run under *nix
_sin
well i mean things like using fopen() instead of open()/CreateFile()
but yea, admittedly its rare i can really write one source for them all
EwIck
yeah I was like that too
but then I realized how powerful the win32 system is, and no longer cared
_sin
thats fine and well until someone wants your program to run on a sparc
EwIck
"The box says Compatible with Microsoft Windows XP, now beat it."
« prev 1 2 3 4 next »