首页| JavaScript| HTML/CSS| Matlab| PHP| Python| Java| C/C++/VC++| C#| ASP| 其他|
购买积分 购买会员 激活码充值

您现在的位置是:虫虫源码 > ASP > 基于堆的安全漏洞检测

基于堆的安全漏洞检测

  • 资源大小:18.86 kB
  • 上传时间:2021-06-30
  • 下载次数:0次
  • 浏览次数:1次
  • 资源积分:1积分
  • 标      签: 检测 基于

资 源 简 介

Author | Kristov Widak | Twitter: @krsec | E-mail: k [mylastname] [at] gmail.com | |:--------------|:----------------|:----------------------------------------| Description A set of scripts that aims to speed up auditing C files manually for heap-based vulnerabilities. FAQ: 1. How does this search for heap-based vulnerabilities? It uses regular expressions to crudely parse through C code. Currently it only looks for problems that arise locally in a single function body. For example: somefunc() { ... free(var); ... free(var);//double-free} It does not compute a call-graph and therefore cannot detect bugs that span function calls. I have some aspirations to add this in the future to significantly improve its utility. 2. Why use regular

文 件 列 表

find-heap-bugs.pl
gen-flat-c-file.pl
heapfns.ini
README.txt

相 关 资 源

您 可 能 感 兴 趣 的

同 类 别 推 荐

VIP VIP