January 9, 2006
At Tenable, we have written several in-house tools which make it easier for us to analyze patches and produce vulnerability checks. One of these tools is an IDA Pro plugin called "mIDA". mIDA is an IDA plugin which extracts RPC interfaces and recreates the associated IDL file. It supports inline, interpreted and fully interpreted server stubs. If you are a security researcher and often toy with RPC vulnerabilities and tools like muddle or unmidl, you definitely want to have a look at this plugin. mIDA 1.0.0 can be downloaded from here (note that mIDA works with IDA Pro 4.9)
About Tenable Network Security
Tenable Network Security transforms security technology for the business needs of tomorrow through comprehensive solutions that provide continuous visibility and critical context, enabling decisive actions to protect your organization. Tenable eliminates blind spots, prioritizes threats, and reduces exposure and loss. With more than one million users and more than 20,000 enterprise customers worldwide, organizations trust Tenable for proven security innovation. Tenable's customers range from Fortune Global 500 companies, to the U.S. Department of Defense, to mid-sized and small businesses in all sectors, including finance, government, healthcare, higher education, retail and energy. Transform security with Tenable, the creators of Nessus and leaders in continuous monitoring, by visiting tenable.com.
(410) 872-0555 x1559