IOCTL Fuzzer – searching vulnerabilities in Windows

IOCTL Fuzzer is for security testers testing windows beta versions. With this tool, you can search and explore windows vulnerabilities. This tool also can be used for Reverse Engineering the windows kernel!

IOCTL Fuzzer is a tool designed to automate the task of searching vulnerabilities in Windows kernel drivers by performing fuzz tests on them.

While processing IRPs, the fuzzer will spoof those IRPs conforming to conditions specified in the configuration file. A spoofed IRP is identical to the original IRP in all respects except the input data, which is changed to randomly generated fuzz. driver hooks NtDeviceIoControlFile in order to take control of all IRPs throughout the system.

Works on :

Windows XP
2003 Server
Vista
2008 Server

Download IOCTL Fuzzer Here

Have Fun !!!

Related External Links

• Fuzzor – an Oracle fuzzer » Musings on Database Security

• Reverse Engineering – Kevin Chiu

• Web Application Security Audit | Find1234.com

Searches leading to this post:
ioctl fuzzer, windows fuzzer, searching vulnerabilities, ioctl windows, ioctl fuzzing, google code iocontrol fuzzing, log windows ioctl, fuzzing windows driver, site:pentestit com fuzzware, Windows Driver security tool fuzz, driver reverse IOCTL Windows

Related Posts

• August 1, 2009 -- Black Hat 2009 July 25-30 archive details
• December 11, 2009 -- OllyDbg 2.0
• September 21, 2009 -- MiniFuzz: The Microsoft File Fuzzer!
• September 8, 2009 -- Windows Vista / Windows 7 SMB Remote REQUEST 0 day!
• August 26, 2009 -- Dranzer – ActiveX vulnerability discovery tool
• July 30, 2009 -- Tool Update : JBroFuzz
• July 20, 2009 -- Perform both generation and mutation based fuzzing with peachfuzz
• July 10, 2009 -- Fuzzware – Web Services and ActiveX controls
• July 3, 2009 -- Sysinternals Suite

Tagged as: Fuzzer, IOCTL Fuzzer, Reverse Engineering, Vulnerability Scanner, Windows