h***@hushmail.com
2005-04-27 18:57:15 UTC
hPRoTeCT Labs is pleased to announce the release of vulnfind, an
automated universal vulnerability discovery and exploitation
engine. vulnfind permits the universal and automated discovery of
vulnerabilities across all Windows XP platforms via the
instrumentation of shared library code responsible for virtually
all vulnerabilities. An advanced 'detours' hook library instruments
the shared library code responsible for 'strcpy', a major cause of
vulnerabilities, and notifies when the saved frame pointer and
return address ('ebp' and 'eip') will be compromised due to excess
string length. In addition, vulnfind permits vulnerability
discovery and penetration tests alike via run-time replacement of
the compromised return address ('eip') with an address of memory-
resident shellcode resident in the memory of the process.
vulnfind is released as open 'c' source and it will be ported to
'c++' in the coming weeks. vulnfind, along with over 250 other c,
cpp, cxx, and h files written by hPRoTeCT staff, is available via
the hPRoTeCT Labs home page, in addition to over 250 other
projects.
The availability of additional projects will be announced to all
mailing lists upon becoming available.
Wiley Miller
Product Manager, hPRoTeCT Labs
Concerned about your privacy? Follow this link to get
secure FREE email: http://www.hushmail.com/?l=2
Free, ultra-private instant messaging with Hush Messenger
http://www.hushmail.com/services-messenger?l=434
Promote security and make money with the Hushmail Affiliate Program:
http://www.hushmail.com/about-affiliate?l=427
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
automated universal vulnerability discovery and exploitation
engine. vulnfind permits the universal and automated discovery of
vulnerabilities across all Windows XP platforms via the
instrumentation of shared library code responsible for virtually
all vulnerabilities. An advanced 'detours' hook library instruments
the shared library code responsible for 'strcpy', a major cause of
vulnerabilities, and notifies when the saved frame pointer and
return address ('ebp' and 'eip') will be compromised due to excess
string length. In addition, vulnfind permits vulnerability
discovery and penetration tests alike via run-time replacement of
the compromised return address ('eip') with an address of memory-
resident shellcode resident in the memory of the process.
vulnfind is released as open 'c' source and it will be ported to
'c++' in the coming weeks. vulnfind, along with over 250 other c,
cpp, cxx, and h files written by hPRoTeCT staff, is available via
the hPRoTeCT Labs home page, in addition to over 250 other
projects.
The availability of additional projects will be announced to all
mailing lists upon becoming available.
Wiley Miller
Product Manager, hPRoTeCT Labs
Concerned about your privacy? Follow this link to get
secure FREE email: http://www.hushmail.com/?l=2
Free, ultra-private instant messaging with Hush Messenger
http://www.hushmail.com/services-messenger?l=434
Promote security and make money with the Hushmail Affiliate Program:
http://www.hushmail.com/about-affiliate?l=427
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/