📚 OpenRCE is preserved as a read-only archive. Launched at RECon Montreal in 2005. Registration and posting are disabled.





About Articles Book Store Distributed RCE Downloads Event Calendar Forums Live Discussion Reference Library RSS Feeds Search Users What's New


Customize Theme

Flag: Tornado! Hurricane!

 Forums >>  Brainstorms - General  >>  How to Patch a Vulnerability in Binary mode

Topic created on: May 7, 2007 12:28 CDT by djnemo .

Hi ...
i have a little search about this but no Good Reference .
now can you help me how to patch VulnerAbilitie in Binary .
any Link ,Tutorial ,Tools ,Book , Key Word and ... can be useful .

TanX alote - Majid

  dennis     May 8, 2007 02:26.36 CDT
Hi,

this is a good read:
https://www.openrce.org/articles/full_view/22

this is a good mailing list:
http://whitestar.linuxbox.org/mailman/listinfo/code-crunchers

this is a good (and free) binary diffing suite:
http://research.eeye.com/html/tools/RT20060801-1.html

I'd suggest you to simply get a patched and unpatched
version of a file and run it through a binary diffing
program.

  asotirov     May 8, 2007 03:21.41 CDT
You can take a look at the source code of the 3rd party patches that I've written: http://www.determina.com/security.research/patches/

I also have some slides from last year's BlackHat USA (sorry but most of the interesting content of the presentation was in the live demo and not the slides):
http://www.determina.com/security.research/presentations/bh-usa06/

  luis   May 8, 2007 15:38.30 CDT
Here is a simple example I presented at REcon 2006 :

http://jeru.ringzero.net/docs/lmiras-fix-bugs-in-binaries.pdf

It isn't a security vulnerability, but rather a regular bug in some Windows Mobile camera software.

  djnemo     May 11, 2007 02:36.37 CDT
Special Tanx all you and EliCZ,is there any book that specialy say about that

  apridgen   May 11, 2007 04:22.41 CDT
the live stuff from last year is available on podcasts via iTunes...it's what I use to pass the time when I commute.

  jms     May 11, 2007 13:29.19 CDT
Do you have a link to the podcasts? I can't seem to find them anywhere, I would be very interested in listening to them.

  apridgen   May 12, 2007 00:28.36 CDT
you have to use itunes and search for blackhat 2006.  that's how I systematically find them every time.

Note: Registration is required to post to the forums.

There are 31,328 total registered users.


Recently Created Topics
[help] Unpacking VMP...
Mar/12
Reverse Engineering ...
Jul/06
let 'IDAPython' impo...
Sep/24
set 'IDAPython' as t...
Sep/24
GuessType return une...
Sep/20
About retrieving the...
Sep/07
How to find specific...
Aug/15
How to get data depe...
Jul/07
Identify RVA data in...
May/06
Question about memor...
Dec/12


Recent Forum Posts
Finding the procedur...
rolEYder
Question about debbu...
rolEYder
Identify RVA data in...
sohlow
let 'IDAPython' impo...
sohlow
How to find specific...
hackgreti
Problem with ollydbg
sh3dow
How can I write olly...
sh3dow
New LoadMAP plugin v...
mefisto...
Intel pin in loaded ...
djnemo
OOP_RE tool available?
Bl4ckm4n


Recent Blog Entries
halsten
Mar/14
Breaking IonCUBE VM
oleavr
Oct/24
Anatomy of a code tracer
hasherezade
Sep/24
IAT Patcher - new tool for ...
oleavr
Aug/27
CryptoShark: code tracer ba...
oleavr
Jun/25
Build a debugger in 5 minutes
More ...


Recent Blog Comments
nieo on:
Mar/22
IAT Patcher - new tool for ...
djnemo on:
Nov/17
Kernel debugger vs user mod...
acel on:
Nov/14
Kernel debugger vs user mod...
pedram on:
Dec/21
frida.github.io: scriptable...
capadleman on:
Jun/19
Using NtCreateThreadEx for ...
More ...


Imagery
SoySauce Blueprint
Jun 6, 2008

[+] expand

View Gallery (11) / Submit