t0000lzzzz und so
Wlan tools:
Aircrac-ng: aircrack is an 802.11 WEP and WPA-PSK keys cracking program that can recover keys once enough data packets have been captured.
Airpwn: Airpwn is a framework for 802.11 packet injection. Airpwn listens to incoming wireless packets, and if the data matches a pattern specified in the config files, custom content is injected "spoofed" from the wireless access point.
Wicrwl: Wicrawl is a simple wi-fi (802.11x) Access Point auditor with a simple and flexible plugin architecture. The goal is to automate the tedious task of scanning wi-fi access points for interesting information.
some XBox2 thingys:
Xbox 360 Hypervisor Privilege Escalation Vulnerability
Schon älter, aber immer noch interessant.
Xlife.nl Interview with TheSpecialist
TheSpecialist - mostly known for this work on the DVD FW hack and HDDHackr(info) tool.
Wenn wir grad schon bei Interviews sind: Interview mit DCT, (möglicher) MPack developer
FairUse4WM breaks Microsoft DRM again
more Security tools:
Babel Enterprise is a systems auditing tool. Babel performs a security level check of the machine, or hardening. The check consists of a number of auditing tests that obtain a snap of the security status of each machine. The result is a security index of the system that is given after each execution.
BinDiff
Do you need to analyze multiple variations of essentially the same program ? Do you need to understand the changes between two versions of a program ? Are you trying to detect code theft ?
SABRE BinDiff uses a unique graph-theoretical approach to allow comparison of executables by identifying identical and similar functions.
VxClass allows the automated unpacking and classification of malware into families.
Based on the same ideas and algorithms that made BinDiff great, VxClass can structurally compare executables and thus ignore byte-level changes such as instruction reordering or string obfuscation. Small changes in the code or changed compiler settings will not fool VxClass.
Sehr interessant, gute Idee. Cool.
BinNavi
Do you need to have code execution reach a certain part of an executable ? Do you want to visualize program structure ? Do you want to visualize the code coverage of your black-box testing or for benchmarking fuzzers ? Do you want to perform security analysis of your Cisco router ?
SABRE BinNavi is the world's first debugging system based on directed graphs and graph visualisation.
Oh man, geil! Aber $$$$ teuer :((
Immunity Debugger
Immunity Debugger is a powerful new way to write exploits, analyze malware, and reverse engineer binary files. It builds on a solid user interface with function graphing, the industry's first heap analysis tool built specifically for heap creation, and a large and well supported Python API for easy extensibility.
Hammer geil. Und free of charge, aber nur Windows :-(
Werd das Teil aber sicher mal unter die Lupe nehmen, vorallem da ich mir in letzter Zeit Gedanken darüber gemacht habe, einen Open Source Debugger zu schreiben; sollte etwa eine Fusion vom Binnavi und dem Immunity Debugger werden. Aber ob ich wohl jemals genügend Zeit dafür finde...
Zum Schluss: Hacker Google :-) Darkgoogle (Grün auf Schwarz), Blackle (grau auf schwarz)
1 Comments:
Hey,
concerning BinNavi's price tag: Please be aware that we have an 'academic' proigram: If you are currently attending a university full-time, you _can_ get BinDiff or BinNavi for essentially 100 EU, IF and only IF
- You propose a cool research project that you'll tackle using our tools
- You write a paper about this research project that we can publish on our website as PR material
Cheers,
Halvar
Post a Comment
<< Home