TECH RESOURCES

Fuzzing and Emulation

• Structure-Aware Fuzzing With AFL / echel0n / Dec. 11, 2023
• Brainflow: More like BrainOverflow / echel0n / July 29, 2022
• Decrypt configuration files like exactly how Huawei ONT does / echel0n / July 28, 2021
• Reproducing ndays with Qiling / echel0n / March 15, 2021

CTF Solutions

• Android Native Library Exploitation Challenge / echel0n / July 12, 2023
• PancakeCon CTF "Crack" Challenge / echel0n / Jan. 17, 2022
• Dice CTF BabyROP challenge write-up / echel0n / Feb. 7, 2021
• Rookie Challenge Unintended Solution / echel0n / Nov. 2, 2020

General

• What makes a Security Researcher/Analyst better? / echel0n / Dec. 17, 2022

Malware Analysis

• Setup a YARA Scanner in AWS Lambda / theatha / Oct. 3, 2022
• Configuration Extraction with YARA / theatha / Sept. 25, 2022
• Analyzing shellcode with Qiling Framework / echel0n / Dec. 23, 2020

Exploitation

• How to 🦆 with Turkcell's Huawei ONT / echel0n / July 4, 2021
• Use After Free Simply Explained / echel0n / Jan. 27, 2021
• ROP Template for forking challenges / echel0n / Jan. 9, 2021
• AST Injection Example / echel0n / Nov. 29, 2020

Linux Kernel

• Small steps into kernel exploitation / echel0n / June 23, 2021
• Becoming a rat in your system / echel0n / April 19, 2021
• How to understand dirtyCOW vulnerability / echel0n / April 12, 2021

pwnable.kr

• pwnable.kr [Part III] bof / echel0n / Jan. 15, 2021
• pwnable.kr [Part II] fd / echel0n / Oct. 2, 2020
• pwnable.kr [Part I] Random / echel0n / Sept. 29, 2020

pwn.college

• pwn.college Memory Corruption [level1] / echel0n / Dec. 10, 2020
• pwn.college Memory Corruption [level2] / echel0n / Dec. 10, 2020

Coding & Tooling

• Best way to get your raw shellcode / echel0n / Dec. 10, 2020
• Reverse an address / echel0n / July 11, 2020
• Agent 47 | Persistent NETSTAT / echel0n / July 2, 2020
• How to install Arch Linux [ The Easy Way ] [TR] [EN] / echel0n / June 22, 2020
• portscan.pl | tiny nmap script / echel0n / May 11, 2020
• scapy.spoof example / echel0n / May 11, 2020
• noSQL Injection Snippet / echel0n / May 11, 2020
• Simple WinRM Shell | Evil WinRM / echel0n / May 11, 2020

Android

• Frida Hook Native Function (stringFromJNI) / echel0n / Oct. 29, 2020
• Bulk APK Dangerous Permission Check / echel0n / Oct. 9, 2020

Unpacking

• Unpacking PyArmor / icecream / July 29, 2020

Guide

• How to get OSCP [OUTDATED] / echel0n / May 11, 2020