Security Research

by Alexander Sotirov

Navigation

Resources

Latest posts

• Assured Exploitation 2011
• You Should Work for Symantec
• CSAW final challenge
• CSAW reversing challenge
• Darknet design

Archives

• 2011 | 2010 | 2009 | 2008

Follow

• Twitter
• Blog feed

Contact

• alex@sotirov.net
• PGP key

Meet me at

• CanSecWest

  Vancouver, Mar 9-11

• Infiltrate

  Miami Beach, Apr 16-17

Software

• Meterpreter service

  metsvc 1.0

  This is a network service wrapper for the Meterpreter. It can be used as a Windows service, or run as a command line application.

• VMware vmrun Ruby wrapper

  vmrun-ruby 0.9

  Ruby wrapper around the VMware Workstation vmrun.exe command line tool. It can be used to start, stop, revert and snapshot VMs. The code has been tested with VMware Workstation 5.5.

• Determina PDB plugin for IDA Pro

  detpdb 1.0

  This is a replacement for the IDA PDB plugin which significantly improves the analysis of Microsoft binaries with public debugging symbols. The distribution contains source code under a BSD license and a binary for IDA 5.0 and 5.1.

• Vulnerability checking extension for GCC

  vulncheck 0.1

  Vulncheck is a compiler extension for detecting vulnerabilities using static source code analysis. The approach taken is described in my Master's thesis. The source code is available as a patch for GCC 4.2.1.

• onesixtyone SNMP scanner

  onesixtyone 0.3.2

  An SNMP scanner which utilizes a sweep technique to achieve very high performance, scanning an entire class B network in under 13 minutes. It can be used to discover devices responding to well-known community names or to mount a dictionary attack against one or more SNMP devices.