image
An Interactive CTF Exploration Tool This is ctftool , an interactive command line tool to experiment with CTF, a little-known protocol used on Windows to implement Text Services. This might be useful for studying Windows internals, debugging complex issues with Text Input Processors and analyzing Windows security. It is possible to write simple scripts with ctftool for automating interaction with CTF clients or servers, or perform simple fuzzing. Background There is a blog post that accompanies the release of this tool available here. https://googleprojectzero.blogspot.com/2019/08/down-rabbit-hole.html Usage ctftool has been tested on Windows 7, Windows 8 and Windows 10. Both 32-bit and x64 versions are supported, but x64 has been tested more extensively. There is online help for most commands, simply type help to see a list of commands, and help <command> to see detailed help for a particular command. $ ./ctftool.exe An interactive ctf exploration tool by @taviso. Type "help" for available commands. Most commands require a connection, see "help connect". ctf> help Type `help <command>` for help with a specific command. Any line beginning with # is considered a comment. help – List available commands. exit – Exit the shell. connect – Connect to CTF ALPC Port. info – Query server informaiton. scan – Enumerate connected clients. callstub – Ask a client to invoke a function. createstub -…

Source