Charlie was a real treat! To bad I missed it because you didnt have a signed certificate. I dont know why, but OS exploits are much easier for me. I guess because I saw what driver manufacturers were doing since the 90s. I once wrote in a complaint about NVidia using "rundll32.dll" and the "experts" told me taht I was crazy, rundll32 in a driver was secure, pfffft! Consequently I was bypasing DEP and ASLR by running process through my GPU. Since alot of GPU archirtectures and instructions are different, it was impossible to find a universal exploit (with my budget), but I was impressed to see Kaspersky starting to use Cuda. The most secure system I have ever worked on had a PCI CPU card that it used. As Charlie pointed-out, hitting a specific AV weakness by throwing a "known" and running a zeroday was a trophy everytime until DEP and ASLR. Having your security software on a separate CPU helped alot to keep thread avalable. After all (in terms of UNIX) security software was just another program fighting for -20nice. BTW your Captcha is pretty easy to (script) guess...