SecPE Tool Now Available
Just uploaded our SecPE tool – see http://www.jwsecure.com/downloads.html. The purpose of this tool is to verify that binaries (for example, anything with a DLL or EXE extension) have been built with certain security options enabled. These options include the following:
1. SafeSEH – the Safe Exception Handler table, which I explained here – http://jwsecure.com/dan/2007/07/the_safe_exception_handler_tab_1.html.
2. GS – this switch for the Visual C++ compiler is explained here – http://msdn2.microsoft.com/en-us/library/aa290051(vs.71).aspx. Anyone know what GS stands for? I suppose "Guard Stack".
3. NXCOMPAT – the No-Execute Compatibility bit, which I explained here – http://jwsecure.com/dan/2007/07/finding_the_nxcompat_bit.html.
Why did we call it SecPE? It stands for Secure Portable Executable (http://en.wikipedia.org/wiki/Portable_executable).
Leave a Reply