piątek, 29 lipca 2016

Exploiting Kali2 - Part 1

Hi,

few days ago I was waiting for another results from one of the fuzzers. I decided to start
another VM - this time with Kali2 - and try to find few bugs to play...

piątek, 22 lipca 2016

bikoz.py



Couple of days ago I decided to write some “small script in Bash” to automate a little bit the work related to (so called) “information gathering” during the pentests. I decided to choose Bash because I’m working with it, most of time during the day anyway, so…

piątek, 15 lipca 2016

czwartek, 14 lipca 2016

Irfan View - Crash - WMA heap crash

WMA crash found 09.04.2016 during IrfaView fuzzing... Details below:


Irfan View - Crash - TIFF case

TIFF crash found 09.04.2016 during IrfaView fuzzing... Details below:


Irfan View - Crash - ANI poc

ANI crash found 09.04.2016 during IrfaView fuzzing...


Irfan View - Heap Crash (TIF)

Crash during TIF preview... Details and poc below.



Irfan View - Crash @MSCTF!TF_CheckThreadInputIdle

I found a crash in IrfanView. The most interesting for me this time was unpacking original i_view32.exe to new exec (1,5MB). Details of the crash you will find below.