My blog

Main topics are reverse engineering, programming, math... Missing something? Read here.

• SAT solver in Python (~175 SLOC) with watch lists (04-Sep-2019)
• Cracking simple XOR cipher with simulated annealing (21-Jul-2019)
• Packing students into dorm using simulated annealing (28-Jun-2019)
• Make shortest cables in your rack using simulated annealing (27-Jun-2019)
• Generating Malbolge code using simulated annealing (26-Jun-2019)
• Как я переписывал 100 килобайт x86-кода на чистый Си (Russian-only post so far, to be translated) (23-Jun-2019)
• Code obfuscation technique: shifted pointer (23-Jun-2019)
• A poor man’s MaxSMT (23-Jun-2019)
• [Python][MaxSAT] Making smallest possible test suite (10-Jun-2019)
• (Windows 7) Solitaire practical joke, part II (27-May-2019)
• (Windows 7) Solitaire practical joke (16-May-2019)
• [Python] Cracking Minesweeper by bruteforce (09-May-2019)
• Reverse Engineering for Beginners in Chinese is available for download (02-May-2019)
• SAT/SMT by Example: what people say (19-Apr-2019)
• [Python][SAT] Optimizing production of a cardboard toy using SAT-solver (16-Apr-2019)
• [Python][SAT] Cracking Minesweeper with SAT solver and sorting network (12-Apr-2019)
• [Math][Python] random.choices() from Python 3 (10-Apr-2019)
• [Math][Python][Z3] Bit reverse function verification (31-Mar-2019)
• [Math][Python][Z3] Graph drawing and ILP (29-Mar-2019)
• [Math][Python][Z3] Wood workshop, linear programming and Leonid Kantorovich (29-Mar-2019)
• [Math][Python] Forgotten password, part II (19-Mar-2019)
• [Math][Python] Simple combinatorics: soldering headphone wires; vehicle license plate; forgotten password (12-Mar-2019)
• Autocomplete using Markov chains (20-Feb-2019)
• Reverse Engineering for Beginners (Understanding Assembly Language): translations (05-Feb-2019)
• SAT/SMT by Example has been updated (04-Feb-2019)
• Worst sorting algorithm I ever saw: proving it using KLEE (25-Jul-2018)
• Understanding Assembly Language: a new title for RE4B (25-Jul-2018)
• DDFF - Duplicate Directories and Files Finder (22-Jun-2018)
• SAP cluster table unpacker (07-Oct-2017)
• De Morgan’s laws and decompilation (02-Jul-2017)
• Eight queens problem in 93 bytes (07-Jun-2017)
• Cyclomatic complexity (13-May-2017)
• Cracking simple LCG PRNG (02-Mar-2017)
• Signed division using shifts (22-Apr-2016)
• Bug in LZHuf.c by Haruyasu Yoshizaki (19-Apr-2016)
• My new website about reverse engineering challenges/exercises/problems/tasks: challenges.re (12-Nov-2015)
• Some of git internals (27-Sep-2015)
• Content-addressable storage (27-Sep-2015)
• Typeless programming languages (BCPL, B), C evolution and decompiling (08-Sep-2015)
• Some parts of my Reverse Engineering book translated to Chinese. (20-Aug-2015)
• Fuzzy string matching + simplest possible spellchecking + hunting for typos and misspellings in Wikipedia (23-Jul-2015)
• How RSA works (09-Jul-2015)
• Tweaking LLVM Obfuscator + quick look into some of LLVM internals (16-May-2015)
• Korean publication of "Reverse Engineering for Beginners" book is available for pre-order! (21-Jan-2015)
• Couple of win32 PE patching utilities (09-Apr-2014)
• PE add imports (18-Feb-2014)
• Convert to sparse file utility (win32) (18-Dec-2013)
• Add import to PE executable file (16-Oct-2013)
• New tracer features for software testing (15-Oct-2013)
• Bug or typo or?.. (19-Aug-2013)
• Finding unknown algorithm using only input/output pairs and Z3 SMT solver (14-Aug-2012)
• Three PoCs from CPUjul2012 (19-Jul-2012)
• CVE-2012-0072 PoC (fixed in CPUjan2012) (17-Jul-2012)
• CVE-2010-0911 PoC (fixed in CPUjul2010) (17-Jul-2012)
• Extreme hardening by code modification. (23-Sep-2011)
• Dataflow tracker (27-Jul-2011)
• Strings in Oracle RDBMS network layer (27-Jul-2011)
• ops_SIMD 0.3 (06-Apr-2011)
• Oracle passwords (DES) solver updating to support AVX (19-Jan-2011)
• Generic tracer 0.5 beta (14-Jan-2011)
• Making C compiler generate obfuscated code (07-Dec-2010)
• Oracle .msb files unpacker (24-Nov-2010)
• Adding old dongle support to DosBox (31-Oct-2010)
• Using debugging features of DosBox (29-Oct-2010)
• Oracle passwords (DES) solver 0.2 (SSE2) (10-Oct-2010)
• Tracing connection between TDW_NOCOMPRESS SAPGUI envrionment variable to bothering window and actual data compression routine (13-Jul-2010)
• About Oracle PL/SQL undocumented "interface" pragma. (07-Jul-2010)
• Generic tracer 0.4 (07-Jun-2010)
• About SAP network packets decompressing and also SAP network password sniffing (02-Jun-2010)
• PEEKs and POKEs in Windows x64? (24-May-2010)
• My two oracle passwords crackers (15-Apr-2010)
• SAP (12-Mar-2010)
• Oracle RDBMS internal self-testing features (06-Feb-2010)
• Random Oracle hosts statistics (30-Jan-2010)
• Rendering data structures passed to functions as arguments (26-Jan-2010)
• Metasploit plugin based on CVE-2009-1979 (22-Jan-2010)
• CVE-2010-0071 (22-Jan-2010)
• My Oracle TNS Listener rootkit experiment (20-Jan-2010)
• My Oracle rootkit experiment (19-Jan-2010)
• More information about CVE-2009-1979 (CPUoct2009) (15-Jan-2010)
• Events checked in some major Oracle RDBMS versions (24-Dec-2009)
• Radiohead lyrics in Oracle RDBMS code (24-Dec-2009)
• Rare x86 instruction (22-Dec-2009)
• FPGA-based Oracle RDBMS passwords solver (06-Dec-2009)
• Generic tracer 0.3 (05-Dec-2009)
• CVE-2009-1979 PoC (CPUoct2009) (30-Oct-2009)
• Oracle RDBMS passwords solver (05-Oct-2009)
• CVE-2009-1970 PoC (CPUjul2009) (24-Jul-2009)
• CVE-2009-1963 PoC (CPUjul2009) (24-Jul-2009)
• CVE-2009-1019 PoC (CPUjul2009) (24-Jul-2009)
• CVE-2009-1020 PoC (CPUjul2009) (24-Jul-2009)
• Generic tracer (21-May-2009)
• CPUapr2009 (21-Apr-2009)
• IBM DB2 (02-Apr-2009)
• CHANGE USER OPI call (07-Jan-2009)
• Oracle SPY Events (04-Nov-2008)
• SYS_OP_* (02-Oct-2008)
• Oracle RDBMS 11.1.0.7.0 some internals info (29-Sep-2008)
• Basics of C within the Oracle kernel. (25-Sep-2008)
• Oracle internals (04-Sep-2008)
• Oracle SPY (30-Jul-2008)
• Intel(R) C++? (23-Jul-2008)
• Network trace in Oracle RDBMS (13-Jul-2008)
• malloc() comments (13-Jul-2008)
• Solving Oracle passwords hashes using FPGA. (13-Jul-2008)
• Evolution (13-Jul-2008)
• _disable_txn_alert undocumented parameter in Oracle 11g (10-Jul-2008)
• Oracle X$KSMLRU fixed table (26-Jun-2008)
• Oracle V$TIMER (17-Feb-2008)

Feel free to translate them to other languages, except Russian, please! Just ask me, I will prepare Russian version by myself.

Some of my other writings are: "Reverse Engineering for Beginners" free book, https://yurichev.com/writings/.

All reverse engineering exercises are moved to separate website: https://challenges.re/.

There are also some random notes at GitHub.