差異處
這裏顯示兩個版本的差異處。
cpp:wdm:security:eclypsium_screwed-drivers_detection [2019/09/04 10:56] tony 建立 |
cpp:wdm:security:eclypsium_screwed-drivers_detection [2023/06/25 09:48] |
||
---|---|---|---|
行 1: | 行 1: | ||
- | {{tag>WDM}} | ||
- | ====== Eclypsium screwed drivers detection ====== | ||
- | ===== Problem ===== | ||
- | Eclypsium是一間提供Firmware Security相關服務的公司。最近因為它們的熱心,找出了我們Windows Driver的一些安全性問題;除此之外,它們還將偵測程式open source出來,放在[[https://github.com/eclypsium/Screwed-Drivers/tree/master/Detection|GitHub]]上。本篇文章主要分享使用心得。 | ||
- | ===== How to? ===== | ||
- | ==== Installation ==== | ||
- | 在Eclypsium的[[https://github.com/eclypsium/Screwed-Drivers/tree/master/Detection|GitHub]]上,附有安裝教學,首先是安裝套件(使用Ubuntu 16.10): | ||
- | <code bash> | ||
- | udo apt-get install python3-dev libffi-dev build-essential virtualenvwrapper radare2 binutils | ||
- | </code> | ||
- | 然而在我安裝套件後,發生mkvirtualenv找不到的問題;經過google,找到[[https://segmentfault.com/a/1190000012030061|這篇文章]],在執行完以下指令後,就能夠執行mkvirtualenv。首先是找尋virtualenvwrapper.sh: | ||
- | <code bash> | ||
- | find / -name virtualenvwrapper.sh | ||
- | </code> | ||
- | 我在Ubuntu 16.10上,找到的路徑是/usr/share/virtualenvwrapper/virtualenvwrapper.sh;接者修改/etc/profile,加入這兩行: | ||
- | <code bash> | ||
- | export WORKON_HOME=/root/virtualenvs | ||
- | source /usr/share/virtualenvwrapper/virtualenvwrapper.sh | ||
- | </code> | ||
- | 這樣之後只要執行source /etc/profile,就可以將這個script的function導入執行環境中。最後就是建立模擬環境: | ||
- | <code bash> | ||
- | mkvirtualenv --python=$(which python3) angr && pip install angr && pip install r2pipe | ||
- | </code> | ||
- | |||
- | ===== Reference ===== | ||
- | * [[https://github.com/eclypsium/Screwed-Drivers/tree/master/Detection|Screwed-Drivers GitHub Repository]] | ||
- | * [[https://segmentfault.com/a/1190000012030061|virtualenv和virtualenvwrapper介绍、安装和使用]] | ||
- | |||