In a previous post, I covered a bit about how Windows Processes are initialized. But how does process creation work in Windows? Let's explore a bit further into Windows processes.
Thursday, August 24, 2023
Wednesday, August 23, 2023
Tuesday, August 22, 2023
Monday, August 21, 2023
XNU, a hybrid kernel
XNU was originally based on the Mach microkernel. But nowadays macOS blurs the lines. Though some parts of macOS follow the microkernel spirit, other parts are monolithic. It's more complex than a "pure" microkernel. Perhaps a microkernel has less abstractions. But XNU is a hybrid kernel that nonetheless still employs the priciple of least privilege well - striking a balance between the two realms.
Saturday, August 19, 2023
"DotRunpeX - demystifying new virtualized .NET injector used in the wild"
Not sure how I missed this article back in March. This analysis by Check Point Research confirms details and provides greater clarity into some malware samples I saw back in January.
Friday, August 18, 2023
Thursday, August 17, 2023
Domainless .. For Now
When I first made accounts on the internet, I bought the domain hexagr.am, thinking I was very clever, and registered a six character handle, "hexagr," across various platforms. But .. some time passed, and someone snagged the domain up a few years ago only a day after it expired, just before I could re-register it.
Wednesday, August 16, 2023
Tuesday, August 15, 2023
Sunday, August 13, 2023
Friday, August 11, 2023
Interprocess Communication
In C
Let's review inter-process communication. IPC is, of course, how software sometimes passes information to other components, as well as to divy out access to restricted resources. This can be quite convoluted and complex in some cases. But here we'll review how this works in C.