OllyDbg as a TCP Proxy with Uhooker
Greetings to one and all…I’m back after a fantastic vacation to India. I was trying to look at interesting things to research about and I bumped across Hernan Ochoa’s blog and an interesting OllyDbg plugin called UHooker (i.e., Universal Hooker). The UHooker is basically a plugin that can allow testers to hook into functions. I used UHooker to effectively fuzz the input to Google Talk by hooking into ws_32.send method and the results seemed interesting initially. The great part is it’s written in Python. There are a few libraries required to get it running effectively, for example, PyWin32 available from sourceforge is one of the libraries required for Python to understand the plugins. Just place the files i.e., proxy.py, server.py, *.cfg, uhooker.dll in the same directory as OllyDbg.exe and you should be able to use the UHooker plugin. The best script that I thought was good from Pen testing perspective was the tcpnet.py that allows you to use Hex Workshop as a TCP proxy that can be used just as other HTTP proxies such as Paros, Burp, WebScarab etc can be used.
No related posts.
Want more clients and customers? We will help them find you by putting you on the 1st page of Google. Email us back to get a full proposal