All articles

Interviews, Igor's tips of the week, guides, industry best practices, and more.

Return to the sources?

A decompiler is commonly viewed as a tool to recover the source code of a program, the same way as ...

Back to normal operation

I restored the old configuration and the blog will continue its normal operation now. The hotfix ...

Silent WMF Hotfix Installer

The new version is suitable for automated setup (for example, in logon scripts). Due to popular ...

WMF Vulnerability Checker

It seems that many users installed the hotfix for the WMF vulnerability on their machines. The fix ...

The longest arithmetic operation

So far this is the absolute record for the binary size of one division/remainder/multiplication ...

Tracing exception handlers

Suppose our goal is to dissect a new program. The ultimate method of analysis is single stepping ...

The unispector

How do you spell “I love you” in Greek?… In IDA Pro you can create unicode strings. They are ...

Reading assembly code

Even unobfuscated code is difficult to understand. Look at this function. Can you tell its purpose? ...