Dinner for Five

Last Saturday, my mother and me (visiting at her during the weekend) got guests: Janine's parents and herself were coming over for some nice dinner. Some photos are available.

Entry: `Stremel Lachs'
Make some simple Guacamole based of Avocado: Mix the squashed Avocado with lemon juice and salt, that's it. Serve the raw salmon filet with the Guacamole and some baguette, offer a twist of lemon optionally to the salmon.

Main Course: `Rindersteak an Haricot-Verde, Rosmarienkartoffeln'
Fry the steak in a very hot pan in olive oil, but not too long, so it's medium. Cook string beans and roll them into bacon, fry these little packs in a pan. Cook potatoes in the skin, remove the skin and bake them with rosemary and olive oil in the oven. Serve all together with a sauce based on the steak's brew, cream and a little bit of smokey BBQ sauce (thanks Ryan!).

Dessert: `Tiramisu'
The nice Italian desert, don't ask me for a recipe -- I didn't do it and I don't know how to!

Get EIP with SEH

While talking about shellcode detection with Paul and Markus, I remembered some SEH based code I've written some time ago for some code to be position independent (and obfuscated). Unfortunately, I couldn't find the original source anymore but wrote up, what I remembered (and didn't test it):

Snippet 1: Custom Handler

mov eax, [esp+0x10]
mov eax, [eax+0x0c]
push eax
jmp eax

Snippet 2: SEH Overwrite

mov edi, [fs:0]
mov edi, [edi+4]
mov [edi+0], 0x448b6766
mov [edi+4], 0x67661024
mov [edi+8], 0x660c408b
mov [edi+12], 0xe0ff6650
 
xor eax, eax
xor [eax], eax
 
pop eax

Basically, the second snippet fetches the address of the current top-most SEH, overwrites it with the binary version of the first snippet and triggers a general protection fault. The address is then popped. Of course, this only works on Win32.

At the time I `invented' that code, I didn't have any reference for such code ITW. But I'm pretty sure, I'm not the first one to have that idea (although a quick Google run didn't reveal anything to me).

Der Sinn des Lebens

I've got a terrible hangover, but it seems I'm not the only one, who drunk too much last night. Seems, they've lost a letter at Google:

But #nepenthes has the answer: < olsson-> stop worrying about worms! do some disco dancing instead! ;-)

Carnival

Like all good Rheinland folks, I'll be unresponsible for any business-related requests the next seven days. It's carnival! \o/

Crazy0r

Work is driving me crazy. And all that annoying University Math on top of it.

The only thing keeping me up is the di.fm Hardcore stream; and that one is surely not keeping me away from insanity.

Hahahahahahahahahahahaha! O_o