• Sep 4, 2025

    Pwndbg <-> WinDbg in the nutshell

    This summer, I had the opportunity to participate in Google Summer of Code with the Pwndbg project - a popular GDB plugin used by PWN and RE lovers. Pwndbg provides a powerful context that enhance the debugging experience, containing a ton of useful tools and shortcuts (for example, vmmap, the command I use the most, is a significantly improved version of info proc mappings).

  • Aug 22, 2025

    A 20-year-old bug in Python’s ctypes

    UPDATE (2025 Sep 10): The PR#138285 fixing this bug has been merged into main and will be backported to other Python versions.

  • Jul 18, 2025

    LXC with GPU passthrough

    LXC is a Linux container runtime. Unlike runc (containerd) or CRI-O (k8s), LXC does not follow the OCI specs; and they manages system containers rather than application containers. Since they’re lighter than full-fledged VMs, LXC has gained significant interest from homelab enthusiasts looking to maximize hardware performance.

  • Oct 5, 2024

    Common Log File System (Part 1)

    Common Log File System (CLFS) is a general-purpose logging service that is accessible to both kernel-mode and user-mode programs [4]. The service offers a public user-mode API for any programs want to store log records on the file system. CLFS is designed to run in kernel to enhance its resilience against system failures. However, due to the complex structure of the log format (BLF), CLFS has made itself a huge attack vector, with 24 CVEs reported in the past 5 years [5].