|
@wdormann | |||||
|
Are there any tools to auto-enumerate any running processes in Windows that don't leverage ASLR themselves, or have libraries loaded that don't leverage ASLR?
Sort of like what's outlined at @DidierStevens blog.didierstevens.com/2011/01/18/qui… but without requiring any user interaction. pic.twitter.com/sFqNLNI75f
|
||||||
|
||||||
|
Will Dormann
@wdormann
|
22. sij |
|
Since this doesn't seem to be a thing, I've created a rudimentary python script that does it. Seems useful.
gist.github.com/wdormann/0a6ee…
Note: For now it requires both Sysinternals ListDLLs and Microsoft dumpbin.exe pic.twitter.com/UuhUrzpcC6
|
||
|
|
||
|
Will Dormann
@wdormann
|
22. sij |
|
I would love to see a "wall of shame" to call out vendors/applications that aren't ASLR compliant. Anybody who runs this script on a real-world system would be able to help contribute!
|
||
|
|
||
|
Jonathan
@jdgregson
|
2. velj |
|
It seems to work just fine if mandatory ASLR is enabled system-wide. pic.twitter.com/Js898ZgE2c
|
||
|
|
||