Source codes, programs and utilities written by myself. Some
of these tools will perheaps never be finished.
WinHP.zip [Sources RPL - Sys RPL - ASM
Saturn HP] : Operating system for HP48 calculator. Composed of 2 files
to upload on the calculator: WINDOWS (system kernel, screen ASM drivers, controls),
WIN.LIB (librairies containing APIs). This system permit a real personalisation
by the user, and offer a graphical windowed environnement, with different
resolutions, different gray colors emulation, and an easy programming of GUI
applications.
IRCOCX.zip [Sources Visual Basic]
: ActiveX control who permit to easily manage an IRC connection, by offering
a lot of automated methods and events.
BoRedir.c [Sources LCC] : Command
line utility who create a TCP redirection on a Back Orifice 1.0 server.
Packet.zip [Sources LCC] : C library
who permit to send and receive raw packets on Windows 9X, by using
different classical packet drivers: ButtSniff, L0pht, NDIS3PKT.
XCrash.c [Sources LCC] : Program using
Packet.zip, who permit to generate, from Windows, lots of attacks
usually only available under Linux: OOB, ICMP Nuke, Boink, Land, Nestea, Newtear,
Storm, Syndrop.
TCPSend.c [Sources LCC] : Tiny program
to send a binary file directly to a TCP port.
SmashIt.zip [Closed source] : GUI
utility who permit to analyze (under some conditions) Windows buffer
overflows (by using debugging APIs), and to generate an exploit by using MASM32
compiler. The tool uses a method based on a dychotomic search, to determine
step by step the offset of the value overwriten by the overflow.. After that,
the tool permit to search after a redirection instruction into DLLs mapped
in the process virtual address space, and to generate the resulting exploit..
This code is built using a set of macros, allowing some constraints (no 00
bytes, ...), and allowing the coder to write himself exploits.
PE.zip [Sources NASM] : File containing
macros, who permit to generate a PE executable file directly, simply by compiling
(with all necessary sections, importations, ...) without needing an external
linker.. Those files give good informations on PE format, and on mechanisms
used by linkers to build this format.
WSockDll.zip [Sources Visual C++ 6.0]
: Projet of a DLL who permit to trace WSock32.dll calls, to log packets
exchanged by TCP/UDP, and to dynamically redirect TCP connections, by emulating
the structure of WSock32.dll .
NAsm.zip0.99a (alpha) : ASM Windows
programming package, who contains the NASM compiler, and lots of utilities,
includes, macros, and documentations. This package help to easily program
in ASM for Windows, by offering macros simulating C langage instructions
(structured programmation, easy function calls), by allowing to generate code
with constraints (without 00 bytes), by easily realizing dynamic APIs importations
(usefull for buffer overflow exploits - virus), ...
telred.tar.gz [Sources GCC] :
TCP redirector, who permit to redirect a TCP connection through a remote shell
by using a script, eventually by using the Telnet command or an utility like
Netcat. For example, this redirector can help to connect on IRC if
we own an appropriated remote shell.
ASC - Alphanumeric Shellcode Compiler0.9.1 [Sources GCC] : Utility who permit to generate shellcodes
containing only alphanumeric chars, simply by compiling a classical shellcode,
and by using some technics from the "Writing IA32 Alphanumeric Shellcodes"
paper.
The-binary client/sniffer/scanner
[Sources GCC, libnet+libpcap needed] : Client/Sniffer/Scanner to control
the-binary backdoor (uses IP proto 11, and offers spoofing mechanism,
remote control and DDoS commands).