[34371] in bugtraq
Releasing full source code of WinBlox
daemon@ATHENA.MIT.EDU (Liu Die Yu)
Thu Apr 1 12:27:44 2004
Message-ID: <20040401120432.30973.qmail@web15407.mail.cnb.yahoo.com>
Date: Thu, 1 Apr 2004 04:04:32 -0800 (PST)
From: Liu Die Yu <liudieyuinchina@yahoo.com.cn>
To: bugtraq@securityfocus.com
In-Reply-To: <003001c416d1$42ce5190$6401a8c0@Oliver>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Releasing full source code of WinBlox:
http://umbrella.name/winblox/
there is detailed information on how to build and description on files.
WinBlox is a small tool monitoring(spy/kill) file operation and commandline execution.
pattern matching is done by PCRE.
api hooking is done by DETOURS.
the source code of monitor DLL can be directly read at:
http://umbrella.name/winblox/
there are about 600 lines of CPP.
BTW,
"Oliver Lavery" = (oliver.lavery_at_sympatico.ca):
found a vuln in WinBlox within 24 hours, and concluded it's "dangerous"
and said
"he'd release the code. So let the games begin ;) "
at
http://seclists.org/lists/bugtraq/2004/Mar/0364.html
http://seclists.org/lists/bugtraq/2004/Mar/0349.html
i hope other guys can also join this "game" - find bugs!
at last, let me repeat:
it's totally a new tool and not for operational uses.
__________________________________
Do you Yahoo!?
Yahoo! Small Business $15K Web Design Giveaway
http://promotions.yahoo.com/design_giveaway/
