Finally back on track hacking on some fun crack!

After months of bitrotting I finally picked up the oSpy codebase during Christmas and added a new feature to oSpy2. My original plan was to get oSpy.SharpDumpLib up to a more useful level, but I got bored and decided I wanted some more useful data to analyse, and thus I ended up adding support for USB-sniffing. It’s a WDM kernel-driver (filter-driver) that intercepts the ioctls and logs them to a file. Right now it’s really simple and just dumps raw URB structs as-is, but adding the needed parsing and logging is really trivial and what I’m planning on doing next.

The cool thing is that there’s not really much USB-specific in this, so adding support for sniffing other things, for instance PCI-drivers, is quite easy.

Oh and while I’m at it, the mandatory screencast. Stay tuned!

Advertisements

~ by oleandre on December 30, 2007.

One Response to “Finally back on track hacking on some fun crack!”

  1. you rock!

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

 
%d bloggers like this: