Full Disclosure mailing list archives
hPRoTeCT Labs Releases vulnfind
From: <hprotect () hushmail com>
Date: Wed, 27 Apr 2005 11:57:15 -0700
hPRoTeCT Labs is pleased to announce the release of vulnfind, an automated universal vulnerability discovery and exploitation engine. vulnfind permits the universal and automated discovery of vulnerabilities across all Windows XP platforms via the instrumentation of shared library code responsible for virtually all vulnerabilities. An advanced 'detours' hook library instruments the shared library code responsible for 'strcpy', a major cause of vulnerabilities, and notifies when the saved frame pointer and return address ('ebp' and 'eip') will be compromised due to excess string length. In addition, vulnfind permits vulnerability discovery and penetration tests alike via run-time replacement of the compromised return address ('eip') with an address of memory- resident shellcode resident in the memory of the process. vulnfind is released as open 'c' source and it will be ported to 'c++' in the coming weeks. vulnfind, along with over 250 other c, cpp, cxx, and h files written by hPRoTeCT staff, is available via the hPRoTeCT Labs home page, in addition to over 250 other projects. The availability of additional projects will be announced to all mailing lists upon becoming available. Wiley Miller Product Manager, hPRoTeCT Labs Concerned about your privacy? Follow this link to get secure FREE email: http://www.hushmail.com/?l=2 Free, ultra-private instant messaging with Hush Messenger http://www.hushmail.com/services-messenger?l=434 Promote security and make money with the Hushmail Affiliate Program: http://www.hushmail.com/about-affiliate?l=427 _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- hPRoTeCT Labs Releases vulnfind hprotect (Apr 27)
- Re: hPRoTeCT Labs Releases vulnfind blad3 (Apr 28)