|
|
|
@1678
|
[1678]
|
07/31/08 21:26:14 |
till |
honeytrap
- bind_address option added to dist config file |
|
|
|
@1677
|
[1677]
|
07/31/08 21:18:45 |
till |
honeytrap
- 'bind_address' configuration option added for binding dynamic … |
|
|
|
@1676
|
[1676]
|
07/31/08 12:30:41 |
common |
libemu
- fix bug introduced by making profiles optional, … |
|
|
|
@1675
|
[1675]
|
07/31/08 12:29:08 |
common |
libemu
- hook URLDownloadToFile in sctest |
|
|
|
@1674
|
[1674]
|
07/31/08 12:27:42 |
common |
libemu
- allow hooking URLDwnloadToFile |
|
|
|
@1673
|
[1673]
|
07/30/08 12:31:00 |
common |
libemu
- sctest, use the optional profiling |
|
|
|
@1672
|
[1672]
|
07/30/08 12:29:37 |
common |
libemu
- win32/linux env: profiling is optional |
|
|
|
@1671
|
[1671]
|
07/29/08 17:38:57 |
chengyu |
fix a bug that will cause AccessViolate? exception
add .bat .reg and .com … |
|
|
|
@1670
|
[1670]
|
07/29/08 17:34:13 |
chengyu |
add killall command in case kill failed
stop process if mount failed while … |
|
|
|
@1669
|
[1669]
|
07/28/08 17:27:47 |
till |
tools
- entropy: GPLv2 boilerplate |
|
|
|
@1668
|
[1668]
|
07/28/08 17:21:55 |
till |
tools
- command line utility for file entropy computation |
|
|
|
@1667
|
[1667]
|
07/28/08 13:04:34 |
common |
libemu
- allow hooking WinExec? |
|
|
|
@1666
|
[1666]
|
07/28/08 02:39:19 |
oxff |
pyprofjsploit:
- provide detailed information to python as tuple … |
|
|
|
@1665
|
[1665]
|
07/28/08 01:45:42 |
oxff |
libemu:
- improved backtracking: 64A1... mov eax,[fs:...] now inits … |
|
|
|
@1664
|
[1664]
|
07/28/08 00:42:19 |
oxff |
pyprofjsploit:
- added code to step through a javascript script with … |
|
|
|
@1663
|
[1663]
|
07/28/08 00:23:32 |
till |
honeytrap
- cpuEmu: socket endpoint logging etc. |
|
|
|
@1662
|
[1662]
|
07/27/08 14:40:11 |
common |
honeytrap
- htm_cpuEmu fixes get the basics working |
|
|
|
@1661
|
[1661]
|
07/21/08 00:47:21 |
common |
libemu
- sctest
- implement hooks for fopen fwrite fclose CreateFile? … |
|
|
|
@1660
|
[1660]
|
07/21/08 00:44:51 |
common |
libemu
- use emu_profile_argument_add_sockaddr_ptr where possible to save … |
|
|
|
@1659
|
[1659]
|
07/21/08 00:43:57 |
common |
libemu
- move win32 fopen fclose fwrite hooks from … |
|
|
|
@1658
|
[1658]
|
07/21/08 00:38:19 |
common |
libemu
- to simplify profiling, create … |
|
|
|
@1657
|
[1657]
|
07/21/08 00:37:00 |
common |
libemu
- implement default logger as callback |
|
|
|
@1656
|
[1656]
|
07/21/08 00:36:15 |
common |
libemu
- porting to big endian broke cmp for lil endian, as endian.h was … |
|
|
|
@1655
|
[1655]
|
07/16/08 19:43:43 |
common |
libemu
- profile win32 sendto()
svn commit -m |
|
|
|
@1654
|
[1654]
|
07/16/08 19:42:16 |
common |
libemu
- introduce emu_hashmap_{ptr,string}_{hash,cmp} functions, to … |
|
|
|
@1653
|
[1653]
|
07/16/08 11:49:17 |
common |
libemu
- split sctest in different files and move to tools/sctest/ |
|
|
|
@1652
|
[1652]
|
07/14/08 22:15:26 |
jose |
[phoneyc]
don't waste time on empty stuff
use curl -L, via p-m b (thanks!) |
|
|
|
@1651
|
[1651]
|
07/09/08 20:00:20 |
till |
honeytrap
- missing length parameter to snprintf added |
|
|
|
@1650
|
[1650]
|
07/08/08 23:39:45 |
till |
nebula
- debug output removed |
|
|
|
@1649
|
[1649]
|
07/08/08 23:11:00 |
till |
nebula
- missing files added |
|
|
|
@1648
|
[1648]
|
07/08/08 23:09:23 |
till |
nebula
- more *BSD compatibility changes
- default host and port in … |
|
|
|
@1647
|
[1647]
|
07/08/08 16:21:27 |
till |
nebula
- *BSD compatibililty changes |
|
|
|
@1646
|
[1646]
|
07/07/08 23:45:10 |
till |
nebula
- replace bzero with memset
- include netinet/in.h for BSD … |
|
|
|
@1645
|
[1645]
|
07/07/08 17:05:02 |
till |
honeytrap
- void casting for va_args to suppress compile warnings |
|
|
|
@1644
|
[1644]
|
07/07/08 17:02:59 |
till |
honeytrap
- void casting for va_args to suppress compile warnings |
|
|
|
@1643
|
[1643]
|
07/07/08 02:11:07 |
common |
nepenthes
- download-ftp, send CWD even if there is no binary mode set |
|
|
|
@1642
|
[1642]
|
07/03/08 10:55:55 |
till |
nebula
- enable realtime signals only if available |
|
|
|
@1641
|
[1641]
|
06/30/08 23:31:07 |
till |
honeytrap
- configurable sensor id
- length restriction for sql statements … |
|
|
|
@1640
|
[1640]
|
06/29/08 15:07:36 |
common |
libemu
- add hooks for win32 ExitProcess? and ExitThread?
- add profile … |
|
|
|
@1639
|
[1639]
|
06/29/08 14:36:13 |
common |
libemu
- basic big endian support
- main problem is unaligned memory … |
|
|
|
@1638
|
[1638]
|
06/28/08 21:04:51 |
common |
libemu
- sctest (void)va_arg calls, so gcc does not complain
- host is … |
|
|
|
@1637
|
[1637]
|
06/28/08 21:03:52 |
common |
libemu
- remove interactive-hooks from configure and README |
|
|
|
@1636
|
[1636]
|
06/27/08 21:30:14 |
till |
honeytrap
- replace SavePostgres? with SubmitPostgres? |
|
|
|
@1635
|
[1635]
|
06/23/08 20:47:47 |
common |
libemu
- install profile and env headers to proper location |
|
|
|
@1634
|
[1634]
|
06/21/08 20:49:48 |
till |
honeytrap
- cpuEmu: code stepping corrected |
|
|
|
@1633
|
[1633]
|
06/21/08 20:17:58 |
till |
honeytrap
- reworked emu plugin |
|
|
|
@1632
|
[1632]
|
06/21/08 18:37:01 |
common |
libemu
- emu_log_set_logcb introduced: void my_emu_logcb)(struct emu *e, … |
|
|
|
@1631
|
[1631]
|
06/21/08 18:26:02 |
common |
libemu
- for the win32 environment s/printf/logDebug/g |
|
|
|
@1630
|
[1630]
|
06/21/08 15:52:54 |
common |
libemu
- add emu_env.h to include_HEADERS |
|
|
|
@1629
|
[1629]
|
06/21/08 15:01:45 |
dp |
redefinition guards |
|
|
|
@1628
|
[1628]
|
06/19/08 16:45:51 |
common |
libemu
- sctest, introduce --cmd to allow overriding commands
example … |
|
|
|
@1627
|
[1627]
|
06/19/08 16:03:28 |
common |
libemu
- sctest, opts orderd by name,
introduced --connect/-c and … |
|
|
|
@1626
|
[1626]
|
06/11/08 18:54:02 |
till |
nebula
- typo: minimum entropy defaulted to maximum instead of miminum … |
|
|
|
@1625
|
[1625]
|
05/28/08 21:32:07 |
till |
honeytrap
- reworked NFQ stream monitor hooking to prevent unbinding … |
|
|
|
@1624
|
[1624]
|
04/27/08 15:00:42 |
till |
nebula
- 0.2.2 tagged |
|
|
|
@1623
|
[1623]
|
04/27/08 14:47:15 |
till |
nebula
- cleanups for first release (0.2.2) |
|
|
|
@1622
|
[1622]
|
04/23/08 20:07:45 |
jose |
[phoneyc]
support for CVE-2008-1309 |
|
|
|
@1621
|
[1621]
|
04/23/08 19:28:58 |
jose |
[phoneyc]
support for OurgameGLWorld, noticed by hillar
exploit from the … |
|
|
|
@1620
|
[1620]
|
04/18/08 16:29:00 |
till |
nebula
- semaphores are used to wakeup worker threads |
|
|
|
@1619
|
[1619]
|
04/16/08 16:51:54 |
till |
nebula
- queue locks changed |
|
|
|
@1618
|
[1618]
|
04/16/08 10:33:50 |
till |
nebula
- new threading concept: one clustering thread and one or more … |
|
|
|
@1617
|
[1617]
|
04/13/08 19:47:15 |
till |
nebula
- redundant line removed |
|
|
|
@1616
|
[1616]
|
04/13/08 19:43:51 |
till |
nebula
- fix: additional rwlocks to prevent race conditions |
|
|
|
@1615
|
[1615]
|
04/06/08 14:39:19 |
oxff |
added missing headers |
|
|
|
@1614
|
[1614]
|
04/03/08 23:20:41 |
till |
nebula
- command line options for minimum segment length and entropy for … |
|
|
|
@1613
|
[1613]
|
03/31/08 23:32:39 |
till |
nebula
- thread synchronization fixed |
|
|
|
@1612
|
[1612]
|
03/31/08 08:59:17 |
till |
nebula
- different fd set handling for polling avoids array scanning |
|
|
|
@1611
|
[1611]
|
03/27/08 22:29:13 |
till |
nebula
- fix: dynamically grow and shrink poll fd set |
|
|
|
@1610
|
[1610]
|
03/26/08 19:17:29 |
jose |
update exploit |
|
|
|
@1609
|
[1609]
|
03/26/08 01:23:32 |
common |
libemu
- Michal Spadlinski pointed out that instr_group_1_82 is an alias … |
|
|
|
@1608
|
[1608]
|
03/25/08 15:02:48 |
jose |
sync with more in the wild exploits |
|
|
|
@1607
|
[1607]
|
03/24/08 19:22:30 |
common |
libemu
- restructured the process environment
now we have emu_env as … |
|
|
|
@1606
|
[1606]
|
03/22/08 22:08:55 |
common |
nepenthes
- reorder event numbering |
|
|
|
@1605
|
[1605]
|
03/22/08 21:56:21 |
common |
nepenthes
- apply Cyril Brulebois patch for gcc 4.3 from debian bug … |
|
|
|
@1604
|
[1604]
|
03/19/08 14:46:53 |
jose |
[phoneyc]
Symantec BackupExec? support |
|
|
|
@1603
|
[1603]
|
03/19/08 14:06:44 |
jose |
[phoneyc]
support for Registry Pro (epRegPro.ocx) |
|
|
|
@1602
|
[1602]
|
03/19/08 13:41:30 |
jose |
[phoneyc]
support for Univeral HTTP File Upload |
|
|
|
@1601
|
[1601]
|
03/18/08 15:48:02 |
jose |
[phoneyc]
support for new CA BrightStor? overflow |
|
|
|
@1600
|
[1600]
|
03/12/08 20:09:48 |
till |
honeytrap
- minor cosmetic changes
- edit distance tool corrected |
|
|
|
@1599
|
[1599]
|
03/11/08 13:31:36 |
jose |
[phoneyc]
Kingsoft Anvtivirus |
|
|
|
@1598
|
[1598]
|
03/06/08 21:34:52 |
common |
libemu
- scprofiler, more code |
|
|
|
@1597
|
[1597]
|
03/06/08 21:19:00 |
common |
libemu
- profiling for socket in w32 env |
|
|
|
@1596
|
[1596]
|
03/06/08 21:05:47 |
common |
libemu
- adjust sctest |
|
|
|
@1595
|
[1595]
|
03/06/08 20:03:26 |
jose |
[phoneyc]
Ourgame GLWorld 2.x overflow
XXX test causes abort() in … |
|
|
|
@1594
|
[1594]
|
03/06/08 19:58:23 |
jose |
[phoneyc]
ICQ toolbar buffer overflow |
|
|
|
@1593
|
[1593]
|
03/06/08 19:57:26 |
till |
nebula
- polling corrected |
|
|
|
@1592
|
[1592]
|
03/06/08 18:55:21 |
common |
libemu
- small list attail fix in run_and_track
init the env in … |
|
|
|
@1591
|
[1591]
|
03/06/08 17:40:30 |
common |
libemu
- slightly smarter traversal
if traversal fails due to stack … |
|
|
|
@1590
|
[1590]
|
03/06/08 17:33:47 |
common |
libemu
- emu_profile_function_argument_get arg0 is return value |
|
|
|
@1589
|
[1589]
|
03/06/08 09:03:10 |
till |
nebula
- write port and protocol info also to snort rules file |
|
|
|
@1588
|
[1588]
|
03/05/08 23:34:40 |
till |
nebula
- port and protocol added to signatures
- signature hash fixed
- … |
|
|
|
@1587
|
[1587]
|
03/02/08 21:49:03 |
till |
nebula
- error in threshold adjustment corrected |
|
|
|
@1586
|
[1586]
|
03/02/08 17:56:11 |
till |
nebula
- forgotten type casts |
|
|
|
@1585
|
[1585]
|
03/02/08 17:50:20 |
till |
nebula
- thread synchronization improved
- segfault on empty secret … |
|
|
|
@1584
|
[1584]
|
02/29/08 21:03:09 |
till |
nebula
- more useful logging |
|
|
|
@1583
|
[1583]
|
02/29/08 20:48:21 |
till |
nebula
- flush stdout after each session
- clean up on SIGKILL |
|
|
|
@1582
|
[1582]
|
02/29/08 20:03:17 |
till |
nebula
- real time signals for adjusting certain parameters
- write … |
|
|
|
@1581
|
[1581]
|
02/29/08 15:13:06 |
till |
nebula
- verbosity level for logging revised
- off-by-one error in … |
|
|
|
@1580
|
[1580]
|
02/28/08 22:57:06 |
till |
honeytrap
- working submit-mwserv module |
|
|
|
@1579
|
[1579]
|
02/28/08 21:49:03 |
oxff |
fixed broken libcurl usage and server response interpretation |
