[fuzzing] ioctlizer 0.1 Beta Release

Ilja ilja at netric.org
Sat Dec 8 00:59:54 CST 2007 

You know, not many people seem to know this, but the windows ddk actually
comes with an ioctl fuzzer. I believe in the 2000 ddk its called devctl and
in the 2003 ddk its called dc2 (an updated version). its binary only but has
a bunch of switches that allows you to tweak things here and there. It
actually finds a fuckton of bugs in 3rd party drivers.

--------- Oorspronkelijk bericht --------
Van: J.M. Seitz <jms at bughunter.ca>
Naar: fuzzing at whitestar.linuxbox.org <fuzzing at whitestar.linuxbox.org>
Onderwerp: [fuzzing] ioctlizer 0.1 Beta Release
Datum: 07/12/07 23:36

> 
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> Hey All,
> 
> I have released a quick BETA version of my Win32 IOCTL fuzzer. A quick
> overview:
> 
> 
> ioctlizer is an attempt at fuzzing Windows IOCTL requests. It is split
> into two separate tools, ioctltrap.py and ioctlizer.py.
> 
> ioctltrap - used to spawn or attach to a user-mode process that
> interacts with a device (i.e. wireshark.exe). By hooking
> the Win32 system calls that are required to interact with a device
> driver, it builds a global test case list to be used
> when fuzzing the device(s).
> 
> ioctlizer.py - used to import the trapped IOCTL/Read/Write test cases,
> and begin mutating them. Easily extended mutators,
> as only the most basic of mutations is included in the fuzzer itself.
> 
> 
> A usage example is available in the source package's README. The tool is
> available from Google Code:
> 
> http://code.google.com/p/ioctlizer/downloads/list
> 
> 
> Send me some feedback, bugs, etc.
> 
> JS
> jms at bughunter.ca
> 
> ps. Please be patient as I get everything checked into SVN, and do some
> wiki pages.
> 
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.7 (MingW32)
> Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
> 
> iD8DBQFHWbzBKEj7ZJktQNsRAgkyAKCTWQYk23CKZRieX7+fBtKuI2TERgCfewfN
> 3GokYDFwPWmIGlyypuIIwVw=
> =Z+SX
> -----END PGP SIGNATURE-----
> _______________________________________________
> fuzzing mailing list
> fuzzing at whitestar.linuxbox.org
> http://www.whitestar.linuxbox.org/mailman/listinfo/fuzzing
>

More information about the fuzzing mailing list