Didier Stevens

HeapLocker

HeapLocker is an open source tool to mitigate heap spray attacks.

Posts:

A detailed readme.txt is included in the 32-bit ZIP file.

Download 32-bit:

HeapLocker_V0_0_0_3.zip (https)

MD5: F4F9AD7139C4D7FB3B0B149FA5961A56

SHA256: 7DD72256EE9C189A234234FD7758E9251F813FF253E0387C9D8188D8155FDDA4

Download 64-bit:

HeapLocker64_V0_0_1_0.zip (https)
MD5: F3D43A29CE64F9418AA154C66B0B06A4
SHA256: 7EFF1D9EA20B522D76034DC4CB66E2FD7AC43E585987FC9ABF7EF8EB801FBC6C

10 Comments »

  1. [...] HeapLocker is a new tool I’m releasing to mitigate heap spray attacks. But be patient, don’t use this version (V0.0.0.2) yet for other reasons than experimenting! I’m still testing newer versions that I’ll release soon. [...]

    Pingback by HeapLocker « Didier Stevens — Monday 6 December 2010 @ 0:02

  2. [...] how Private Usage Memory Monitoring in HeapLocker works is easy, so let’s start with this [...]

    Pingback by HeapLocker: Private Memory Usage Monitoring « Didier Stevens — Tuesday 14 December 2010 @ 17:30

  3. [...] second protection technique I implemented in
    HeapLocker is NOP sled [...]

    Pingback by HeapLocker: NOP Sled Detection « Didier Stevens — Wednesday 12 January 2011 @ 0:02

  4. [...] third protection technique I implemented in HeapLocker is string [...]

    Pingback by HeapLocker: String Detection « Didier Stevens — Friday 18 February 2011 @ 12:44

  5. [...] Via:http://blog.didierstevens.com/programs/heaplocker/ [...]

    Pingback by HeapLocker:堆喷射检测工具 — Saturday 19 February 2011 @ 2:18

  6. [...] like EMET, HeapLocker can allocate a page at address 0 (null or 0×00000000) to mitigate null pointer [...]

    Pingback by HeapLocker: Null Page Allocation « Didier Stevens — Monday 14 March 2011 @ 5:05

  7. [...] been using my HeapLocker tool for almost a year now, and I’ve encountered no issues, except for the NOP sled detection. [...]

    Pingback by HeapLocker: Preventing Heapsprays « Didier Stevens — Tuesday 18 October 2011 @ 8:34

  8. [...] I’m releasing my first 64-bit version of my HeapLocker tool. [...]

    Pingback by HeapLocker 64-bit « Didier Stevens — Sunday 23 October 2011 @ 19:40

  9. [...] HeapLocker tool, written by Didier Stevens, provides yet another protection mechanism against heap sprays.  It deploys a number of techniques [...]

    Pingback by Exploit writing tutorial part 11 : Heap Spraying Demystified | Corelan Team — Saturday 31 December 2011 @ 23:33

  10. [...] Net Security recorded a video with me speaking about EMET and HeapLocker at Hack In The Box Amsterdam 2012. Like this:LikeBe the first to like this. Leave a [...]

    Pingback by Video: Hardening Windows processes « Didier Stevens — Wednesday 8 August 2012 @ 8:08


RSS feed for comments on this post. TrackBack URI

Leave a Reply (comments are moderated)

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

The Rubric Theme. Blog at WordPress.com.

Follow

Get every new post delivered to your Inbox.

Join 225 other followers

%d bloggers like this: