2007-02-06 00:00:00
By Tim Brown
First things first, site updates. konqil.icio.us 1.6 is now available. Updates between 1.2 and 1.6 include bug fixes, new menu options and support for the http_proxy environment variable. I have also made available my advisory regarding a denial of service condition in FreeProxy.
Fuzzled, my Perl fuzzer is now at release candidate 3, surely a release must be imminent, much to the surprise of my colleagues who seem to think I never finish anything ;). Also on the cards is Interject, a generic TCP/UDP intercepting proxy modelled after the gorgeous EchoMirage from my friends at BindShell.net. This will arrive as a wrapper library to be loaded via LD_PRELOAD and a server binary which listens for intercepted traffic. The server binary will use curses to display the packet to the use for modifying, using a HexCurse style interface. Work is currently in progress on the protocol used to encapsulate the traffic. Interestingly, try compiling the following and let me know what output you get:
#include <stdio.h>
char blah[] = "\x03END";
int main(int argc, char **argv) {
printf(blah);
}I get >ND, which is somewhat odd. Might be of use in Javascript injection attacks I guess. Anyway, if you're interested in working on this project with me, then why not give me a shout. Anyway, I have just spent the day reversing encryption in .net DLLs, so off to bed.
Mood: Tired
Music: Nothing playing right now
You are unknown, comment