My son and I have been getting into ham radio, and I've fallen deep into the homebrew well. Ham radio is fascinating because you can build your own equipment, and this is teaching me so much physics and analog electronics! I'm documenting my adventures here for future reference.
Bryan Alexander developed a method for bootstrapping the CLR in an unmanaged process, and running an embedded .NET assembly as shellcode. One of the related challenges we ran into involved staging more assemblies from that position, and using the AppDomain separation boundary to our advantage. I ended up finding a neat way to circumvent some of the CLR's trust behavior in loading assemblies, and we put these two things together into a research blog post for Accenture Security. It's been great fun to work on
My NolaCon presentation on EvilVM is available on Youtube . This is a post-exploitation framework built on a native code Forth compiler, which is itself a position independent shellcode. This project has been in the works for almost 3 years, and turned out far more interesting than I expected it to when I started it. Code is available, and I am continuing active development (partly because I've found it actually useful fairly often, just for my own use!).