Browse wiki
| Computer languages
|
C +
|
| Documentation note
|
User reference in PDF from http://www.xmailserver.org/gmm.pdf
|
| Full description
|
The Guarded Memory Move tool is useful for … The Guarded Memory Move tool is useful for studying buffer overflows and catching them together with a "good" stack image. Once a stack overflow has been exploited, the back trace is already gone, as is information about parameters and local variables that are very important in understanding how the attacker is working out the exploit. The GMM library uses dynamic function call interception to catch the most common functions that attackers use to exploit stack buffers. It uses the LD_PRELOAD capability and offers two services: first, it avoids buffer overflow to allow the attacker to execute shell-code on your machine. Second, where an exploit is detected, it saves the stack content and triggers a segmentation fault. The resulting core dump has the necessary information to debug the exploit and fix the software.to debug the exploit and fix the software.
|
| Homepage URL
|
http://www.xmailserver.org/gmm.html +
|
| Interface
|
library +
|
| Internet-application
|
security +
|
| Is GNU
|
false +
|
| Keywords
|
debug +
, intrusion detection +
, stack +
, buffer overflow +
, exploit +
, forensic analysis +
, shell code +
|
| Last review by
|
Davide Libenzi +
|
| Last review date
|
2 February 2004 +
|
| License
|
GPLv2orlater +
|
| License verified by
|
Janet Casey +
|
| License verified date
|
27 January 2004 +
|
| Name
|
GMM +
|
| Prerequisite description
|
glibc +
, gcc +
|
| Prerequisite kind
|
Required to use +
, Required to build +
|
| Real name
|
Davide Libenzi +
|
| Related projects
|
Libsafe +
|
| Revisionid
|
2,726 +
|
| Revisiontimestamp
|
12 April 2011 08:25:47 +
|
| Revisionuser
|
User:WikiSysop +
|
| Role
|
Maintainer +
|
| Short description
|
Guarded Memory Move +
|
| Submitted by
|
Database conversion +
|
| Submitted date
|
1 April 2011 +
|
| Use
|
internet-application +
, security +
|
| User level
|
none +
|
| Version comment
|
0.4 beta released 2004-01-27
|
| Version date
|
27 January 2004 +
|
| Version download
|
http://www.xmailserver.org/gmm-0.4.tar.gz +
|
| Version identifier
|
0.4 +
|
| Version status
|
beta +
|
| Has queryThis property is a special property in this wiki.
|
GMM +
, GMM +
, GMM +
, GMM +
, GMM +
, GMM +
, GMM +
, GMM +
|
| Modification dateThis property is a special property in this wiki.
|
5 March 2013 19:11:12 +
|
| Page has default formThis property is a special property in this wiki.
|
Entry +
|
| Has subobjectThis property is a special property in this wiki.
|
GMM +
, GMM +
, GMM +
, GMM +
|
| EmailThis property is a special property in this wiki.
|
davidel@xmailserver.org +
|
Permission is granted to copy, distribute and/or modify this document
under the terms of the GNU Free Documentation License, Version 1.3 or
any later version published by the Free Software Foundation; with no
Invariant Sections, no Front-Cover Texts, and no Back-Cover Texts. A
copy of the license is included in the page “GNU Free
Documentation License”.
The copyright and license notices on this page only apply to the
text on this page. Any software described in this text has its
own copyright notice and license, which can usually be found in
the distribution itself.