[Dailydave] IOCTL Fuzzer
J.M. Seitz
lists at bughunter.ca
Fri Dec 7 16:53:03 EST 2007
Hey All,
I have released a quick BETA version of my Win32 IOCTL fuzzer. A quick
overview:
ioctlizer is an attempt at fuzzing Windows IOCTL requests. It is split
into two separate tools, ioctltrap.py and ioctlizer.py.
ioctltrap - used to spawn or attach to a user-mode process that
interacts with a device (i.e. wireshark.exe). By hooking
the Win32 system calls that are required to interact with a device
driver, it builds a global test case list to be used
when fuzzing the device(s).
ioctlizer - used to import the trapped IOCTL/Read/Write test cases,
and begin mutating them. Easily extended mutators,
as only the most basic of mutations is included in the fuzzer itself.
A usage example is available in the source package's README. The tool is
available from Google Code:
http://code.google.com/p/ioctlizer/downloads/list
<blocked::http://code.google.com/p/ioctlizer/downloads/list>
Send me some feedback, bugs, etc.
JS
jms at bughunter.ca <blocked::mailto:jms at bughunter.ca>
ps. Please be patient as I get everything checked into SVN, and do some
wiki pages.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.immunitysec.com/pipermail/dailydave/attachments/20071207/8a5d4a5a/attachment.htm
More information about the Dailydave
mailing list