«  Prototype-8
   «  TAP
   «  Blockparty




Prototype-8
Prototype-8

     
Prototype-8 is a new kind of software, developed simply to illuiminate the danger of our current state of software security. Prototype-8 can assist penetration testers by providing 0-day vulnerability exploitation with minimal user interaction.


     

[+] Automatic Exploit Generation:

Linux 2.6 ASLR Stack Overflows

Linux 2.6 Heap Overflows

Windows 2000/XP(sp1)/NT Stack Overflows

Windows 2000/XP(sp1)/NT Heap Overflows


[+] Literally Writes 0Day In:

- Perl

- PHP

- Python

- Ruby

- C/C++


[+] Plug-n-Pwn Technology:

Simple IRE plugin creation kit

Multiple Payload/Stage 2 Integration


The notion of automated exploitation is something that has at one point or another crossed the mind of almost every information security researcher since the dawn of the science. However, due to the heavy requirement of developing the theory, as well as the software to implement the theoretical mechanisms required, software to perform this task has not been seen in the professional debugging arena.

"A New Kind of Technology":

"Grayscale Research has changed this with the advent of the Prototype-8 software debugging suite. This whitepaper aims not to promote this software, but to provide the theory required to build such a system. By utilizing the inherent native debugging libraries on the Windows and the Linux platform, it is possible to achieve the holy grail of exploit development for both platforms. Reliable exploits, that literally write themselves."



  Product Cost:  [call for pricing]
 Current Version:    [Under Development]
Product Information
[top]








TAP
TAP

     
Application tampering can cost your applications their runtime integrity, allowing attackers to custom alter the operation of your application and give them the ability to run any code within the context of your application they prefer. TAP is a cumulative effort to prevent application tampering by offering redundant application integrity agents per process.


     
By integrating TAP into a code base, the application inherits the native protections that TAP affords. Implementation is a simple API call that can be made from a variety of languages. Currently only windows is supported with this software platform.



  Product Cost:  [call for pricing]
 Current Version:    Internal Beta Only
Product Information
[top]








Blockparty
Blockparty

     
Blockparty is a multiplatform debugging library designed for both protective and intrusive ends. Blockparty can analyze stack and heap bugs on both Win32 and Linux platforms and give accurate indications of current conditions.


     
Using the capabilities in blockparty, you can easily create multiplatform debugging environments using the built in C++ block class. The underlying API can be easily accessed through C function calls if working in a non-object oriented application.



  Product Cost:  [call for pricing]
 Current Version:    beta
Product Information
[top]