Home > Cloud Computing > Cloud Security

Bestorm fuzz software cracking

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

A very important discipline in vulnerability mining is fuzz technology, including local parameters and network overflow. bestorm is a business software and industry leader in terms of network, which is also easy to use, in particular, tcp fuzz supports various protocols, such as http, ftp, and smtp.

The trial version is limited to 30 minutes. The following section describes how to crack the version. For details, refer:

00445C54 |./0F8F FC020000 | jg 00445F56 ==> jump to the following expiration code
00445C5A |. | 7C 0B | jl short 00445C67
00445C5C |. | 3D BC070000 | cmp eax, 7BC
00445C61 |. | 0F87 EF020000 | ja 00445F56 ==> jump to the following expiration code
================================ The above four lines of code are directly 90

00445F56 |> 8BCE mov ecx, esi
00445F58 |. E8 E3E6FFFF call 00444640
00445F5D |. 6A 1E push 1E;/<% d> = 1E (30 .)
00445F5F |. 68 88335200 push 00523388; | bestorm trial cannot run test for more than % d minutes. bestorm wocould now exit. [% 08x] session: continueattack ()-done.
00445F64 |. 8D8C24 BC030000 lea ecx, dword ptr [esp + 3BC]; |
00445F6B |. 68 00040000 push 400; | count = 400 (1024 .)
00445F70 |. 51 push ecx; | s
00445F71 |. FF15 C05A5000 call dword ptr [<& MSVCR80. _ snprintf>]; \ _ snprintf

004A1AF3. 894424 58 mov dword ptr [esp + 58], eax
004A1AF7. 895424 5C mov dword ptr [esp + 5C], edx
004A1AFB. 0F88 91000000 js 004A1B92 ====> jmp
004A1B01. 7F 0B jg short 004A1B0E
004A1B03. 3D 08070000 cmp eax, 708
004A1B08. 0F86 84000000 jbe 004A1B92
004A1B0E> 8BCE mov ecx, esi
004A1B10. E8 EBA8FFFF call 0049C400
004A1B15. 68 00040000 push 400;/n = 400 (1024 .)
004A1B1A. 8D9424 FD4400> lea edx, dword ptr [esp + 44FD]; |
004A1B21. 6A 00 push 0; | c = 00
004A1B23. 52 push edx; | s


004A1B24. C68424 044500> mov byte ptr [esp + 4504], 0; |
004A1B2C. E8 59400400 call <jmp. & MSVCR80.memset>; memset
004A1B31. 6A 1E push 1E;/<% d> = 1E (30 .)
004A1B33. 68 88335200 push 00523388; | bestorm trial cannot run test for more than % d minutes. bestorm wocould now exit.
004A1B38. 8D8424 0C4500> lea eax, dword ptr [esp + rjc]; |
004A1B3F. 68 00040000 push 400; | count = 400 (1024 .)
004A1B44. 50 push eax; | s
004A1B45. FF15 C05A5000 call dword ptr [<& MSVCR80. _ snprintf>]; \ _ snprintf

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More