Professional Documents
Culture Documents
2009 Cigital
Cigital
2009 Cigital
Disclaimer
2009 Cigital
2009 Cigital
2009 Cigital
2009 Cigital
2009 Cigital
2009 Cigital
2009
Fall 2004
2009 Cigital
Bad news
The world would rather not focus
on how to build stuff that does
not break
Its harder to build good stuff
than to break junky stuff
2009 Cigital
2009 Cigital
Lawyers
2009 Cigital
Egregious EULAs
2009 Cigital
Guns
2009 Cigital
Money
2009 Cigital
2009 Cigital
2009 Cigital
Botting
2009 Cigital
MACROs
2009 Cigital
2009 Cigital
Process manipulation
2009 Cigital
Thread hijacking
2009 Cigital
Thread hijacking
MAIN
THREAD
RenderWorld(..)
DETOUR PATCH
2009 Cigital
2009 Cigital
2009 Cigital
2009 Cigital
2009 Cigital
super
MAIN
THREAD
INJECTED
CODE PAGE
RenderWorld(..)
MAIN
THREAD
uncloak
HARDWARE BP
branch
complete
CastSpellByID( .. )
ScriptExecute( .. )
ClearTarget( .. )
MSG
RenderWorld(..)
MAIN
THREAD
recloak
restore
2009 Cigital
2009 Cigital
2009 Cigital
2009 Cigital
2009 Cigital
2009 Cigital
Using BSIMM
2009 Cigital
www.informIT.com
No-nonsense monthly security
column by Gary McGraw
www.cigital.com/justiceleague
In-depth thought leadership
blog from the Cigital Principals
Scott Matsumoto
Gary McGraw
Sammy Migues
Craig Miller
John Steven
2009 Cigital
Building Security In
Software Security Best
Practices column edited by
John Steven
www.computer.org/security/bsisub/
www.cigital.com/silverbullet
www.cigital.com/realitycheck
2009 Cigital
2009 Cigital
For more