Moshe Kaplan

icon indicating a website link https://www.linkedin.com/in/moshekaplan1/ icon indicating an email [email protected]

Results 30 comments of Moshe Kaplan

Upgrade winafl-cmin.py to Python 3

Fixed with https://github.com/googleprojectzero/winafl/pull/306

Some more hardening

Closer on the side of paranoia, it may be worth segmenting the libmagic code away from the rest, given the possibility of an exploit targeting it. One possibility would be...

Some more hardening

@dputtick : It would likely require moving the code interfacing with libmagic to a separate binary, so it could be limited to only reading files and not writing to the...

Sanitize PDF instead of converting to HTML

A while back I wrote a script based on PyPDF2 and Wand to sanitize PDFs by converting them into images and stitching them back together into a single PDF. It...

Sanitize PDF instead of converting to HTML

@Rafiot: I address that by extracting the text first and then embedding it inside of the PDF. See https://github.com/moshekaplan/SafePDF/blob/master/SafePDF.py#L53

Master issue for THARD-2

- Exploiting libmagic - Writing a malicious binary to the second USB - Returning a fake MIMEtype

Master issue for THARD-2

Unfortunately, this is the only reference I could find : https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2014-1606 , but it only has DoS and no code execution.

Github Action: Add CI job for VS2019

Note: This depends on #334

Create Github Action to build on pull request

For an example of the output, see https://github.com/moshekaplan/SysinternalsEBPF/pull/1/checks

make thumbs.db parser

Is there a way Mark's existing work could be integrated in? https://github.com/markmckinnon/Autopsy-Plugins/tree/master/Thumbs_parser https://github.com/markmckinnon/Autopsy-Plugins/tree/master/Thumbcache_parser