Download Shareware and Freeware Software for Windows, Linux, Macintosh, PDA

line Home  |  About Us  |  Link To Us  |  FAQ  |  Contact

Serving Software Downloads in 976 Categories, Downloaded 30.067.909 Times

Guarded Memory Move 0.6

  Date Added: August 06, 2010  |  Visits: 733

Guarded Memory Move

Report Broken Link
Printer Friendly Version


Product Homepage
Download (72 downloads)

Guarded Memory Move project gets handy when you have to study buffer overflows and you need to catch them together with a "good" stack image. When a stack overflow has been exploited, the back trace is already gone together with good information about parameters and local variables, that are of vital importance when trying to understand how the attacker is trying to work out the exploit. The GMM library uses dynamic function call interception to catch the most common functions that are used by attackers to exploit stack buffers. The GMM library uses the LD_PRELOAD capability and offers two services to the user. First of all, it avoids buffer overflow to allow the attacker to execute shell-code on your machine. Second, in case where an exploit is detected, the stack content is saved and a segmentation fault is triggered. The resulting core dump will then have all the necessary information to debug the exploit and fix the software. Internally, the library insert itself between the application and the glibc library and intercept functions that might lead to buffer overflow exploits. Before calling the glibc core function, the GMM layer saves part of the stack frame above the caller to a temporary location in its frame. It also stores the previous three return addresses in its local storage before calling the glibc core function. When the core function returns, the GMM code samples again the previously recorded return addresses and, if they differ, it restores the previously saved stack frame and issue a segmentation fault. This with a clean stack frame, so that it can be inspected with a debugger. While other solutions exist to detect buffer overflow exploits, like for example StackGuard and StackShield, those differs from GMM in many ways. They live as gcc patches and do require you to rebuild your application to use their functionalities. The good of this approach is that every single function is protected against buffer overflows. The bad of this solution is that every single function is protected against buffer overflows. That is, performance regression on the whole application, even if this is not really a huge problem when hunting for buffer overflows. Another solution similar to GMM is LibSafe, but it does not save and restore the stack frame by making it unusable for debugging. But lets see how GMM differs from the above listed solutions. First of all, GMM works everywhere there are stack frames and the gcc and glibc duo. That means that it is not limited to i386 only. And now the real reason for the GMM existence. Whats New in This Release: - GCCs __builtin_return_address and __builtin_frame_address seems to return garbage instead of NULL at the last frame. This release fixes the problem..

Requirements: No special requirements
Platforms: Linux
Keyword: Buffer Buffer Overflows Debuggers Frame Gmm Guarded Guarded Memory Move Memory Move Overflows Programming Stack Stack Frame Together With
Users rating: 0/10

License: Freeware Size: 419.84 KB
GUARDED MEMORY MOVE RELATED
Photo & Video  -  CEIVA Snap 2.5
Now its easier than ever to share photos and stay connected with CEIVA Snap, exclusively from the inventors of the digital photo frame. Only CEIVA Snap lets you send photos DIRECTLY to your CEIVA frame from anywhere in the worldall with just the...
42.9 MB  
Photo & Video  -  Volet 2.2.0.0
The all new VOLET, a very popular photo app for Windows Phone, the Volet 2. Share million words, with many frame to choose from, many photos in one frame. 10 Amazing effects from Aviary, instantly make your photos more...
4 MB  
Libraries  -  Audio::LADSPA::Buffer 0.018
Audio::LADSPA::Buffer is a Perl module for LADSPA buffer. SYNOPSIS use Audio::LADSPA; my $buffer = Audio::LADSPA::Buffer->new($size); $plugin->connect(Port name => $buffer); $buffer->set( @values ); # or get a buffer from a plugin.....
81.92 KB  
File Security  -  Comodo Memory Firewall 2.0.4.20
Free Comodo Memory Firewall is a buffer overflow detection and prevention tool which provides the ultimate defense against one of the most serious and common attack types on the Internet - the buffer overflow attack. Free Comodo Memory Firewall...
3.27 MB  
Libraries  -  Convert::ASN1 0.20
Convert::ASN1 is an ASN.1 Encode/Decode library. SYNOPSYS use Convert::ASN1; $asn = Convert::ASN1->new; $asn->prepare(q [APPLICATION 7] SEQUENCE { int INTEGER, str OCTET STRING } >); $pdu = $asn->encode( int => 7, str =>...
61.44 KB  
Libraries  -  XML::Filter::Sort::BufferMgr 1.01
XML::Filter::Sort::BufferMgr is a Perl implementation class used by XML::Filter::Sort. The documentation is targetted at developers wishing to extend or replace this class. For user documentation, see XML::Filter::Sort. Two classes are used to...
25.6 KB  
Libraries  -  CGI::AppBuilder::Frame 0.10
CGI::AppBuilder::Frame is a configuration initializer. SYNOPSIS use CGI::AppBuilder::Frame; my $ab = CGI::AppBuilder::Frame- >new( ifn, my_init.cfg, opt, vhS:a:); my ($q, $ar, $ar_log) = $ab- >start_app($0, %ARGV); print $ab-...
10.24 KB  
Libraries  -  Audio::Mad 0.6
Audio::Mad is a Perl interface to the mad MPEG decoder library. SYNOPSIS use Audio::Mad qw(:all); my $stream = new Audio::Mad::Stream(); my $frame = new Audio::Mad::Frame(); my $synth = new Audio::Mad::Synth(); my $timer = new...
133.12 KB  
Libraries  -  Better String Library 7222006
Better String Library is an abstraction of a string data type which is superior to the C library char buffer string type and C++s std::string. The library is totally stand alone, portable (known to work with gcc/g++, MSVC++, Intel C++, WATCOM...
112.64 KB  
Libraries  -  Wily::Message 0.02
Wily::Message is a Perl extension to handle Wily Messages. SYNOPSIS use Wily::Message; use Wily::Connect; # opens a file in wily and exits when the window is destroyed my $win_id; my $ws = Wily::Connect::connect(); my $wm =...
21.5 KB  
NEW DOWNLOADS IN LINUX SOFTWARE, PROGRAMMING
Linux Software  -  Polling Autodialer Software 3.4
ICTBroadcast Auto Dialer software has a survey campaign for telephone surveys and polls. This auto dialer software automatically dials a list of numbers and asks them a set of questions that they can respond to, by using their telephone keypad....
488 B  
Linux Software  -  Total Video Converter Mac Free 3.5.5
Total Video Converter Mac Free developed by EffectMatrix Ltd is the official legal version of Total Video Converter which was a globally recognized brand since 2006. Total Video Converter Mac Free is a free but powerful all-in-one video...
17.7 MB  
Linux Software  -  Skeith mod_log_sql Analyzer 2.10beta2
Skeith is a php based front end for analyzing logs for Apache using mod_log_sql.
47.5 KB  
Linux Software  -  SLAX 6.0+
Slax is a modern, portable, small and fast Linux operating system with a modular approach and outstanding design. Despite its small size, Slax provides a wide collection of pre-installed software for daily use, including a well organized graphical...
190 KB  
Linux Software  -  GTK+ 2.5
GTK+, which stands for the GIMP Toolkit, is a library for creating graphical user interfaces for the X Window System. It is designed to be small, efficient, and flexible. GTK+ is written in C with a very object-oriented approach. Language bindings...
60 MB  
Programming  -  FLEX-db Digital Asset Manager 3.0.9
FLEX-db - an enterprise Digital Asset Manager (DAM). It ingests and links metadata with files, creates thumbnails, and processes files using business rules. FLEX-db has a JSP client, Java app server for file input and output and an EJB metadata...
21.57 MB  
Programming  -  Libicom 0.9.0
The libicom library is a character based dynamicly linked library for Linux. It is used to remotely control the Icom IC-R8500 wide band receiver via an RS232 link. All call and return parameters to the control functions are character string based....
20.48 KB  
Programming  -  dotdesktop 0.3
Dotdesktop library provides ability to parse desktop entry file and access the information in a convenient way. Desktop entry file format is defined by freedesktop.org, it is used to describe information about an application such as the name and...
327.68 KB  
Programming  -  Cedalion for Linux 0.2.6
Cedalion is a programming language that allows its users to add new abstractions and define (and use) internal DSLs. Its innovation is in the fact that it uses projectional editing to allow the new abstractions to have no syntactic limitations.
471.04 KB  
Programming  -  libyasl 0.2
Libyasl is a C++ class library to easily realize TCP/UDP/Multicast clientsand servers in IPv4 and IPv6 environments under GNU/Linux systems.
143.36 KB