Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/math1as/Windows-GDI-fuzzer
Windows Graphics Device Interface (GDI+) fuzzer
https://github.com/math1as/Windows-GDI-fuzzer
Last synced: 21 days ago
JSON representation
Windows Graphics Device Interface (GDI+) fuzzer
- Host: GitHub
- URL: https://github.com/math1as/Windows-GDI-fuzzer
- Owner: math1as
- Created: 2020-08-11T17:58:26.000Z (over 4 years ago)
- Default Branch: master
- Last Pushed: 2020-08-13T02:57:54.000Z (over 4 years ago)
- Last Synced: 2024-08-05T17:26:04.500Z (4 months ago)
- Language: HTML
- Homepage:
- Size: 84 KB
- Stars: 127
- Watchers: 7
- Forks: 18
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
- awesome-hacking-lists - math1as/Windows-GDI-fuzzer - Windows Graphics Device Interface (GDI+) fuzzer (HTML)
README
# Windows Graphics Device Interface (GDI+) fuzzer
this project including
- harness to fuzz GDI+ via transform emf to wmf
- test corpus with good coverage
- vulnerability POC & report generated by BugId![result](https://raw.githubusercontent.com/math1as/Windows-GDI-fuzzer/master/result.txt)
## Note
Since the bottleneck of fuzzer is the IO performance of the disk, the use of RAMDISK can effectively speed up this process.
But remember to make a snapshot for your vm-machine or you may lost all of your files.
some of my vulnerability which could be triggered in Microsoft Powerpoint get lost in this way ,will attach them if recovered.
happy bug hunting!
## CVE-ID?
At that time I go on holiday ,left the fuzzer just running day after night.
so I forget to report these vulnerabilities at all ,most of them get patched in Microsoft July patch tuesday.
![patch](https://raw.githubusercontent.com/math1as/Windows-GDI-fuzzer/master/patch.txt)## credit
Personal project created by Wenxu Wu(@ma7h1as)