tansqrx
Apr 23 2007, 05:22 AM
OverviewTo truly understand why a booter or any other types of exploits function, an investigator must have a look at the program’s source code. In the case of Yahoo! Messenger which is a closed source program, I am forced to dive into the dark and sometimes mystical realm of assembly debugging. By exploring the Yahoo! Messenger assembly code and the machine state at the time of a crash I can reveal why, on the machine level, how a booter works. Perhaps more importantly, is it possible to run arbitrary code from a remote attack. ToolsIn order to explore the assembly and machine states of Yahoo! Messenger, I used several assembly debuggers. The most used program is OllyDbg [http://home.t-online.de/home/Ollydbg/]. OllyDbg shows all the machine instructions that make up a program and also allows attachment to a currently running program. Two other tools that I used were Microsoft’s WinDbg [http://www.microsoft.com/whdc/ddk/debugging/] and DataRescue’s IDA Pro [http://www.datarescue.com/idabase/]. Each program has its strong points and I used knowledge gained from each program to complete an overall assessment of the crash. Figure 36 shows OllyDbg open and attached to Yahoo! Messenger just after a crash.  Figure 36 - OllyDbg
Reply
Similar Topics
Keywords : yahoo, protocol, part, 16, assembly, analysis
- Yahoo! Messenger Power User
(1)
Yahoo! Search Boss
(5) Last wednesday (2008-07-09) Yahoo! Search launched a new service called Yahoo! Search
BOSS (Build your Own Search Service) which is a web services platform that allows developers and
companies to create and launch web-scale search products by utilizing the same infrastructure and
technology that powers Yahoo! Search . Some capabilities of the new Yahoo! Search BOSS
service are: Ability to re-rank and blend results Unlimited queries Total flexibility on
presentation This service is based on Python and is available to everybody, to get started a....
History Of Yahoo
compare.. ;) (2) QUOTE Yahoo! began as a student hobby and evolved into a global brand that has changed the
way people communicate with each other, find and access information and purchase things. The two
founders of Yahoo!, David Filo and Jerry Yang, Ph.D. candidates in Electrical Engineering at
Stanford University, started their guide in a campus trailer in February 1994 as a way to keep track
of their personal interests on the Internet. Before long they were spending more time on their
home-brewed lists of favorite links than on their doctoral dissertations. Eventually, Je....
Get Paid To Search Yahoo!
New way for you to make money online (10) Hi buddies, Is this a good news for you? I've got paid for the first month from this site. Here
is how you can earn: After you sign up, they ask you to set their page as homepage and install a
search box.Everyday, when you search once, you will earn up to 3p. How much you can earn depends on
where you live. I earned 1.5p per search. So, if you search 40 times per day, how much you will earn
a month? It's very easy, right? In addition, when you refer friends, you will earn more. They
offer 4 referral levels: 50%, 10%, 5% and 2.5%. If you are interested, sign up a....
Yahoo! Messenger Talking To Google Talk?
(7) While Yahoo! was off fighting Microsoft, they made some deals with Google to put a slightly
tainted taste into the merger deal. The most notable one was an ad revenue “trial” where Google
would serve the ads on Yahoo! pages in return for a very favorable share of the profit. Over
the past week it appears that the trials were very successful and Yahoo! has agreed to a more
permanent deal with Google that would continue the deal, pending any anti-trust issues. Mixed up in
this agreement is a paragraph that indicates future interoperability between the two IM....
Is The Sandbox Only For Google?
Does the sand box affect yahoo, msn? (0) Does the sandbox effect prevent yahoo and msn search engine rankings as well as google rankings?
Because my site was on the first page for it's targeted keyword on msn and yahoo. But now my
site url can't even be found in yahoo. It says that such an url does not exist! Do any of
you know the answer to this? If so share your views.....
Yahoo! Dodges The Bullet
(4) Microsoft has receded it’s bid for Yahoo! in a surprise Saturday (May 3, 2008) announcement.
When presented with offering more money or engaging in a hostel take-over, Microsoft decided to take
a third route and just drop the whole thing. In a letter addressed to Yahoo!
(http://www.microsoft.com/presspass/press/2008/may08/05-03letter.mspx), Microsoft outlined several
reasons why they let the offer slip. There are concerns that a deal between Yahoo! and Google
would seriously throw a monkey wrench into things and regulatory bodies, the EU in particular, wou....
Flashget Download Manage
High-speed safe and Multi-protocol support! (0) FlashGet is a leading download manager and has the highest amount of users on the internet. It uses
MHT(Multi-server Hyper-threading Transportation) technique, supports various protocols and has
excellent document management features. FlashGet is a freeware without any adware or spyware. Safe
and clean: Optimize the system resource FlashGet can use up the lowest system resources and will not
influence your normal work or study. increase the download speed and stability Flashget can
increase download speed from 6-10 times. It uses MHT (Multi-server Hyper-threading Tr....
Lightweight Directory Access Protocol (ldap)
Interfacing Microsoft's Active Directory over LDAP (0) This was a script I wrote for automating the creation of over 1000 some accounts within Active
Directory over summer before the new fiscal year in 2007. It is not intended for direct use. Please
make changes necessary to reflect your user management or production environment.
#!/usr/bin/perl use strict; # use Tk; # use Tk::DialogBox; # use Tk::Carp qw/cluck
warningsToDialog fatalsToDialog/; use Win32::FileSecurity qw(MakeMask Get Set); use Win32::OLE; /*
my $adp_acct = 'USERNAME'; use constant ADP_DOMAIN = 'DOMAIN'; use constant
AD....
Who Uses A Yahoo E-mail
(8) How many people use a Yahoo e-mail account & WHY? What is good about it?! Post as a comment
please....
Latest Yahoo! Vulnerability Appears To Be A Moving Target For Messenger
(2) I have been aware of the latest Yahoo! Jukebox and until recently Messenger exploits for about a
week. Starting on the 3rd of February, three critical vulnerabilities were posted for datagrid.dll
and mediagrid.dll which are part of the Yahoo! Jukebox offering
(http://www.securityfocus.com/bid/27578, http://www.securityfocus.com/bid/27579 ,
http://www.securityfocus.com/bid/27590) . The reason that I waited so long to post this is because
the details were inconsistent and it didn’t add up to me. The versions of Messenger that were
listed as vulnerable are abso....
Optimize Your Site For Yahoo
(1) I know google and Yahoo somehow values different stuff when it ranks websites. Some good tips for
Yahoo optimization: Keywords in URL alt text Site Explorer Prominence I don't want to copy
the whole thing here, but this article explains it: Yahoo Optimization Feel free to share your
experience of optimizing for Yahoo....
List Of Freeware That You Just Can't Do Without - Part 1
(6) Hi, This is a lit of freeware that I have come to use after years of experimenting.
Security/Protection: Antivirus: Avira Antivir - This is one of THE best Antivirus software in the
world and it comes for free. Its significantly better that NOD or McAfee or Norton, so you can
understand its power.......... Firewall: Comodo - This one is NOT 'one of the best
firewalls' in the world. It is THE best firewall in the world. And its FREE. Its quiet amazing.
I really don't understand how the other firewall makers are making people to pay for their
inferior produ....
Microsoft To Buy Yahoo!
Yay or Nay? (36) Ok, the news has been spreading since this morning when Microsoft announced that they will buy one
of the largest search engine companies in the world, Yahoo! Inc. It has been speculating that
they had a really close relationship due to the Windows Live Messenger and Yahoo! Messenger
integration. Now that Microsoft is forking over $44.6 BILLION USD in cash and stock, one may
wonder ... what will Microsoft buy next? The whole Internet? More on Ars Technica:
http://arstechnica.com/news.ars/post/20080...pping-cart.html I'm totally against this takeover
....
Hacking Yahoo! Messenger
(12) lately i've been reading some way of hacking yahoo messenger. youtube, hacking forums, and etc,
i've been there to ask and to learn how to hacking it. but i've been wondering every now and
then while reading and watching those posted videos and scripts, but they are not working. For real,
is there any way to hack yahoo messenger?....
Do Google Search Better Than Yahoo?
This is a question for you all google users!! (14) Do you think google search is better than yahoo?? Are they have similar search?? Well for me google
search is more effective than yahoo search engine.....
Yahoo! Messenger 9 Beta Preliminary Review
(13) I have been using the latest version of Yahoo! Messenger for over two weeks now and I would like
to give a quick review of it. Overall this is not a major change from what I know as Messenger. As
it has been said before, this is evolutionary not revolutionary. From what I can see there are no
new features (at least none that I would use), the user interface (UI) is prettier, and it looks
like there have been some bug fixes; that’s it. Under the hood there are some things to note.
The current version of the YSMG protocol with version 8 is 15 and Messenger 9 has....
Captchas + Yahoo! Chat = No Bots (for Now)
(15) Just in case you haven’t been keeping up with Yahoo! Chat, it looks like a new sheriff is in
town (http://blog.messenger.yahoo.com/blog/2007/08/29/new-entry-process-for-chat-rooms/). Just
before the Labor Day weekend Yahoo! started making users enter a captcha before they could enter
a chat room. This could possibly mean that the chat rooms will be bot free for the time being. My
first impression of the system was not that bad. I logged in with Yahelite and was quickly prompted
to enter the captcha in a separate dialogue box. I do have to admit that the proc....
C# Tutorial : Lesson 7 - Creating Value Types & Reference Types - Part II
(1) foreach statement This statement is explicitly used to traverse through arrays. The
benefit of using foreach over the normal for statement is that it is not needed to check the
size of the array while using the former. Syntax:- foreach(type identifier in expression) {
statement 1; statement 2; .... } Suppose we have an array StudentNames containing the name of all
the students in a class. We need to display the name of each one of them on screen. First we will
see how it can be done using the for loop. CODE string[] StudentNames = new s....
Yahoo Messenger 8.0(full)
OffLine Installer (3) For User Who only want offline install yahoo messenger with voice QUOTE
http://download.yahoo.com/dl/msgr8/us/ymsgr8us.exe Your posts need to have actual content
in them, not just a line and a link. Especially when starting a new thread. ....
[tutorial] Basics Of C Programming - Part 1
(11) Well, I was going through a few posts on C / C++ on asta .. and found a very less C related
subjects. I went through the entire tutorial of mastercomputers >>HERE .. It was a nice
tutorial for guys who have a little knowledge of programming basics and want to go into hardcore
programming. Since there was no Basic overview of what C was, i thought of writing one /smile.gif"
style="vertical-align:middle" emoid=":)" border="0" alt="smile.gif" />. I wil make shure that what i
write will be 100% accurate, but its human to error so please correct me if i am wrong. Let....
VB.NET: MS-Access Interaction Tutorial (Part I)
(18) VB.NET - MS-Access Interaction Tutorial I got down to writing this tutorial because of
this certain question that Dhanesh posted on our forums here . This tutorial will attempt to
show you how to: Create a MS-Access Database Create/Edit/Delete Tables in it Access it and
Add/Edit/Update data in those tables all with VB.NET . Note: This is not a beginner's
tutorial and I'll assume you know all the basics of creating WinForm based applications using
VS.NET . The screen-shots provided are from VS.NET 2005 - but you shouldn't f....
Easy Message: The Ultra Light Multi-Protocol Messenger
(3) Have any of you come across Easy Message - the new (not so new) kid in the block ? I've had it
for a while. You tend to get tired of your system tray being cluttered with a wide variety of IMs -
but then it's kind of unavoidable as different grousp of your friends have their own IM
preferences. Trillian used to be a good option earlier on - but then it became too bulky and
unstable. That's where Easy Message comes in - it supports the same range of protocols as
Trillian does - i.e. AOL, ICQ, MSN, Yahoo etc.. BUT it's got an ultra-light footprint. Th....
Yahoo! Protocol: Part 11 - Booters Introduction
(4) For whatever reason, certain users feel the need to harass other citizens of the internet. The
following is a typical scenario of what may cause a Yahoo! booter to be used. Bob is an
average computer user that enjoys talking to his friends over Yahoo! Messenger. One day, Bob
goes into a Yahoo! chat room to discuss the topics of the day. After several minutes of
intellectual discussion with members of the chat room, Jane joins the room. From the very
beginning, it is apparent that Jane is in the room to cause trouble and starts a flame war. Bob and
Jane ....
Finding Yahoo Account Creation Date
is there a legal way of doing so? (1) As the topic title says, is there a way to find the date someone created a yahoo account, without
crossing the hacking boundary?....
Yahoo! Messenger Protocol Tutorial - Part 2
(2) Part 2 - History The need for humans to communicate faster and more efficiently has been one of the
driving forces behind the Internet. Not since the invention of the telephone has communications
between humans been more readily available. The communication power of the Internet began to take
shape in its infancy with one of the first Internet applications, email. While the Internet was
still ARPANET and with only four links, the first email message was sent by Ray Tomlinson in 1971.
The first message consisted of the text “Testing 1-2-3” and did not contain any of th....
Creating You Own Game In RPG Maker 2000/2003
Part 2 - Map Designing (12) Map Designing is a very important part in your RPG game. The maps are made up with many different
graphics, which we call Chipsets. You can import your own Chipsets in the Database. Check out the
other tutorial to find out how to. Once you are at the map design, you will have all ocean. If you
look to the left, you'll see graphics you can choose from. You need to put thoses graphics from
the left to make a game on the right. First, we need to set the graphics, or Chipsets. Right-click
on the MAP0001 folder under the graphics box to the left and choose Map Propertie....
Creating A Game In Rpg Maker 2000/2003
Part 1 - New Game and the Database (18) Creating a game in RPG Maker 2000/2003 Part 1 (I AM ONLY GOING TO TEACH YOU HOW TO MAKE AN
RPG GAME IN THIS TUTORIAL!) First of all, you need to find some resources. When I say
resources, I mean Character Sets, Chip Sets, Music, Backdrops, and Enemies. (Also others) The
perfect place to find thoses would be at one of these great websites: www.gamingw.net
www.phylomortis.com But, before you save them, you need to create a new game. Once you click on
"New Project", this screen will pop up. The Directory Name is simply the name of the folder that
it will....
Have You Ever Been To Yagoohoogle?
Google & Yahoo together... (15) Hello! while browsing the net, I found this interesting project. Its a searchengine that uses
code from google search and yahoo search. You eneter a keyword and it gives you results in yahoo and
google in one splited screen. It's pretty interesting if you constantly check your page rank and
you must compare results between 2 powerful search engines like yagoo! and google. Anyway there
are many software solutions that you can buy, and they have more specific stuff than just comparing
results, but hey, this one is free... Ok, now enough talking HERE is the li....
Learn how to surf anonymous on the net! [Part - 1]
Anonymous surfing on the net.-[Part - 1] (34) Hi guys! This is my first topic here, anyway. So much people are using Microsoft Internet
Explorer to surf on the web. If you are using on the net with Microsoft Internet Explorer you can
hide yourself. Anonymous surfing helps you to hide your active-x and java options so protects you
from some problems on the net like hacker attacks. If you want to be anonymous you should do this.
FOR DIAL-UP USERS (IE 6 AND UP)... 1-) Go to TOOLS=>INTERNET PREFERENCES=>CONNECTIONS 2-)
Sellect your connection at the panel you are wieing 3-) Click "Propeties" like y....
Looking for yahoo, protocol, part, 16, assembly, analysis
|
|
Searching Video's for yahoo, protocol, part, 16, assembly, analysis
|
advertisement
|
|
