Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Dailydave: Re: Announcing metasm

Re: Announcing metasm

From: Dave Aitel <dave.aitel_at_gmail.com>
Date: Mon, 23 Jul 2007 08:07:50 -0400

Is this debugger something you'd want integrated with Immunity Debugger?
When you say "debugger that runs over firewire" do you mean kinda like
WinDBG does when you're trying to do kernel debugging? I'm writing a kernel
exploit all day today, but no chance of setting up WinDBG to do it - it's
almost easier just to use memory dumps and !analyze -v. The WinDBG UI is
almost as bad as SPIKE Proxy's. One thing MOSDEF is not good at is
enumerating all the different ways to add two numbers together. We only put
one kind of encoding into the assembler and changing it now would be quite
difficult. But we're optimized for shellcode size, and speed, while
remaining pure-Python. Which is annoying because those are all polar
opposites.

What dialect of assembler is it that metasm implements? Is that NASM-like?

-dave

On 7/22/07, Thomas Ptacek <tqbf_at_matasano.com> wrote:
>
> I've learned not to benchmark ideas against MOSDEF; it's dispiriting.
>
> The difference between my code and yours, apart from maturity and
> originality, is that yours focuses on assembly language and mine
> focuses on a class hierarchy for opcodes. I wanted to see how far I
> could get using Python as a superficial IL for x86.
>
> My goal isn't shellcode; it's process[or] manipulation. I used it to
> write a debugger to run over firewire.
>
> > Thomas Ptacek wrote:
> > > We've had a lot of luck with a very similar approach. Ours is in
> > > Python, only supports x86, and isn't as complete; it also tries
> > > less hard to look like a DSL. But we like it. If anyone's
> > > interested, we'd be happy to post.
> > How do these things differ from MOSDEF (other than having a
> disassembler?)
>
> --
> ---
> Thomas H. Ptacek // matasano security
> read us on the web: http://www.matasano.com/log
> _______________________________________________
> Dailydave mailing list
> Dailydave_at_lists.immunitysec.com
> http://lists.immunitysec.com/mailman/listinfo/dailydave
>

_______________________________________________
Dailydave mailing list
Dailydave_at_lists.immunitysec.com
http://lists.immunitysec.com/mailman/listinfo/dailydave
Received on Jul 23 2007

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos