Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/WinHeapExplorer/WinHeap-Explorer
WinHeap Explorer repository.
https://github.com/WinHeapExplorer/WinHeap-Explorer
Last synced: 21 days ago
JSON representation
WinHeap Explorer repository.
- Host: GitHub
- URL: https://github.com/WinHeapExplorer/WinHeap-Explorer
- Owner: WinHeapExplorer
- License: bsd-2-clause
- Created: 2016-09-03T11:34:56.000Z (over 8 years ago)
- Default Branch: master
- Last Pushed: 2018-08-27T19:49:54.000Z (over 6 years ago)
- Last Synced: 2024-08-05T17:40:18.679Z (4 months ago)
- Language: Python
- Homepage:
- Size: 2.61 MB
- Stars: 121
- Watchers: 11
- Forks: 23
- Open Issues: 7
-
Metadata Files:
- Readme: README.md
- License: License
Awesome Lists containing this project
- awesome-hacking-lists - WinHeapExplorer/WinHeap-Explorer - WinHeap Explorer repository. (Python)
README
# WinHeap-Explorer
The efficient and transparent proof-of-concept tool for heap-based bugs detection in x86 machine code for Windows applications.
# Requirements
WinHeap Explorer main module
1. Intel pin-2.14-71313-msvc10-windows http://software.intel.com/sites/landingpage/pintool/downloads/pin-2.14-71313-msvc10-windows.zip
IDAScripts
1. IDA disassembler (6.8 or higher) + IDAPython.
# Usage
pin.exe -t winhe.dll -o results.txt -d sysdlls_ins_list -redzones_size 16 -- calc.exe
-d <sysdlls_ins_list> - file with a list of instructions in system or/and user dlls that should be instrumented.
-o <log_file> - file to save results.
-redzones_size - size of redzones to check heap out of bound access (default 8).
A list of instructions to instrument may be obtained using the scripts provided in the IDAScript folder:
sysdlls_parser.py [path to system dll]
usedlls_parser.py -d 2 [path to user dll]
-d <depth_level> - search depth level for potentially dangerous routines.
Please take a look at config.conf file to configure the scripts.
NOTE: The IDAScripts is possible to use directly from IDAPro without wrappers specified above.