MSEC Debugger Extensions v1.0.6

Rating: No reviews yet
Downloads: 15806
Released: Jun 17, 2009
Updated: Dec 13, 2012 by AndyRenk
Dev status: Beta Help Icon

Recommended Download

Source Code MSECExtensions_1_0_6.zip
source code, 1406K, uploaded Jun 17, 2009 - 14802 downloads

Other Available Downloads

Application Classify
application, 2K, uploaded Aug 13, 2010 - 513 downloads
Application DebugWrapper.zip
application, 4K, uploaded Dec 13, 2012 - 491 downloads

Release Notes

New MSECExtensions bits, changelog below:

1.0.1 Updates:

A bug that resulted in overtainting H or L registers has been fixed.
Initial External Release: March, 2009

1.0.2 Updates:

When loading user mode mini-dumps, the Gather rule now correctly sets the stack context.

1.0.3 Updates:

New state and gather functionality and analyze rules to identify exceptions where the faulting address is on the stack.
Hashes are fixed at 32 bit display (8 hex characters) and code locations are fixed at 64 bit display (16 hex characters).
Added support for the REP SCAS instruction in the disassembler
Fixed a serious bug in the wildcard match function, which would result in anything that matched up to the first wildcard matching the entire string
Fixed a bug in which the destination pointer registers were not being set to the tainted value set for Write AVs that required taint analysis
Fixed bugs in the distinction between source and data registers for taint tracking in some rep instructions

1.0.4 Updates:

Fixed a reporting and analysis bug, in which we change the faulting instruction as well as the invoking function when we skip excluded stack frames

1.0.5 Updates:

Updates to the excluded symbols list
Handle POP instructions that pop to memory
Handle PUSH instructions that push to memory
Treat POP instructions to memory the same as MOV instructions to memory

1.0.6 Updates:

External Release: June, 2009

Reviews for this release

No reviews yet for this release.