winchecksec

winchecksec
- 作用：Windows静态安全检测工具
- 支持检测如下安全特性
  - ASLR
    - /DYNAMICBASE with stripped relocation entries edge-case
    - /HIGHENTROPYVA for 64-bit systems
  - Code integrity/signing:
    - /INTEGRITYCHECK
    - Authenticode-signed with a valid (trusted, active) certificate (currently unsupported on Linux)
  - DEP
    - 别称：W^X, NX
  - Manifest isolation
    - /ALLOWISOLATION
  - SEH和SafeEH
    - SEH=Structured Exception Handling
  - Control Flow Guard和Return Flow Guard instrumentation
  - Stack cookie
    - /GS
- 资料
  - Github
    - trailofbits/winchecksec: Checksec, but for Windows: static detection of security mitigations in executables
      - https://github.com/trailofbits/winchecksec

results matching ""

No results matching ""