Significantly improve the script to detect potentially fixed vulnerabilities

joxeankoret / diaphora

Diaphora, the most advanced Free and Open Source program diffing tool.

http://diaphora.re

GNU Affero General Public License v3.0

3.51k stars 370 forks source link

Significantly improve the script to detect potentially fixed vulnerabilities #281

Closed joxeankoret closed 8 months ago

joxeankoret commented 9 months ago

Doing patch diffing for finding fixed vulnerabilities is so common that most people believe that bindiffing is patch diffing. As so, continuously improving this would also improve the life of security researchers. Some very basic improvements:

Detection of signed to unsigned patches (using the assembly).
Add more simplistic pattern matching techniques.

An idea from some anonymous nice person: write a script that detects most/all CVEs from some Microsoft Tuesday patch.

joxeankoret commented 8 months ago

Some experimental "new" features have been added with release 3.1.1.