Date: Thu Apr 28 00:17:59 2005
From: hprotect at hushmail.com (hprotect@...hmail.com)
Subject: hPRoTeCT Labs Releases vulnfind

hPRoTeCT Labs is pleased to announce the release of vulnfind, an 
automated universal vulnerability discovery and exploitation 
engine. vulnfind permits the universal and automated discovery of 
vulnerabilities across all Windows XP platforms via the 
instrumentation of shared library code responsible for virtually 
all vulnerabilities. An advanced 'detours' hook library instruments 
the shared library code responsible for 'strcpy', a major cause of 
vulnerabilities, and notifies when the saved frame pointer and 
return address ('ebp' and 'eip') will be compromised due to excess 
string length. In addition, vulnfind permits vulnerability 
discovery and penetration tests alike via run-time replacement of 
the compromised return address ('eip') with an address of memory-
resident shellcode resident in the memory of the process.

vulnfind is released as open 'c' source and it will be ported to 
'c++' in the coming weeks. vulnfind, along with over 250 other c, 
cpp, cxx, and h files written by hPRoTeCT staff, is available via 
the hPRoTeCT Labs home page, in addition to over 250 other 
projects.

The availability of additional projects will be announced to all 
mailing lists upon becoming available.

Wiley Miller
Product Manager, hPRoTeCT Labs



Concerned about your privacy? Follow this link to get
secure FREE email: http://www.hushmail.com/?l=2

Free, ultra-private instant messaging with Hush Messenger
http://www.hushmail.com/services-messenger?l=434

Promote security and make money with the Hushmail Affiliate Program: 
http://www.hushmail.com/about-affiliate?l=427

Powered by blists - more mailing lists