beSTORM ANI File Fuzzing Module

beSTORM ANI File Fuzzing Module

More Information and Free Trial

Download the ANI Module Description File

This beSTORM fuzzing module was auto-generated by importing 3 random ANI file samples and therefore may not be a complete representation of the ANI file type specification. It is, however, thorough enough to catch the ANI Cursor 0-day

<?xml version="1.0" encoding="UTF-8"?>
<BESTORM Version="1.2">
  <GeneratorOptSettings>
    <BT FactoryDefined="1" FactoryType="Binary"/>
  </GeneratorOptSettings>
  <ModuleSettings>
    <M Name="ANI">
      <P Name="ANI Specification">
        <SP Name="Writer" Library="File Utils.dll" Procedure="Write">
          <S Name="Path">
            <VB Name="Path Value" Description="Path" ASCIIDefault="c:\temp\ani" NoDefaultTypes="1"/>
          </S>
          <S Name="Extension">
            <VB Name="Extension Value" Description="Extension" ASCIIDefault="ani" NoDefaultTypes="1"/>
          </S>
          <S Name="Directory Splitter">
            <VB Name="Splitter Value" Description="Splitter" ASCIIValue="2" NoDefaultTypes="1"/>
          </S>
          <SC Name="Data">
            <S Name="Header #1">
              <C Name="RIFF" ASCIIValue="RIFF"/>
            </S>
            <SP Name="Header Size" Library="Math Utils.dll" Procedure="Add">
              <S Name="A">
                <C Name="Const Value" Value="0x14"/>
              </S>
              <S Name="B">
                <L Name="Length of the whole File" Size="4" Type="NetworkOrder" ConditionedName="Rest of ANI File"/>
              </S>
              <S Name="Size">
                <C Name="Size Value" ASCIIValue="4"/>
              </S>
            </SP>
            <SC Name="Rest of ANI File">
              <SC Name="ACON Structure">
                <S Name="ACON Header">
                  <C Name="ACON" ASCIIValue="ACON"/>
                </S>
                <R Name="repeater element">
                  <SE Name="one of the elements">
                    <SC Name="ANIH Structure">
                      <S Name="ANIH Header">
                        <C Name="anih" ASCIIValue="anih"/>
                        <L Name="Length of Data" ConditionedName="anih Data" Size="4" NetworkOrder="1"/>
                      </S>
                      <S Name="anih Data">
                        <B Name="cFrames" Default="0x24, 0x00, 0x00, 0x00" MaxBytes="4" PaddingChar="0x00" PaddingSize="4"/>
                        <B Name="cSteps" Default="0x08, 0x00, 0x00, 0x00" MaxBytes="4" PaddingChar="0x00" PaddingSize="4"/>
                        <B Name="cx" Default="0x00, 0x00, 0x00, 0x00" MaxBytes="4" PaddingChar="0x00" PaddingSize="4"/>
                        <B Name="cy" Default="0x00, 0x00, 0x00, 0x00" MaxBytes="4" PaddingChar="0x00" PaddingSize="4"/>
                        <B Name="cBitCount" Default="0x00, 0x00, 0x00, 0x00" MaxBytes="4" PaddingChar="0x00" PaddingSize="4"/>
                        <B Name="cPlanes" Default="0x00, 0x00, 0x00, 0x00" MaxBytes="4" PaddingChar="0x00" PaddingSize="4"/>
                        <B Name="JifRate" Default="0x00, 0x00, 0x00, 0x00" MaxBytes="4" PaddingChar="0x00" PaddingSize="4"/>
                        <B Name="flags" Default="0x01, 0x00, 0x00, 0x00" MaxBytes="4" PaddingChar="0x00" PaddingSize="4"/>
                      </S>
                    </SC>
                    <SC Name="rate Structure">
                      <S Name="rate Header">
                        <C Name="rate" ASCIIValue="rate"/>
                        <L Name="Length of Data" ConditionedName="rate Data" Size="4" NetworkOrder="1"/>
                      </S>
                      <S Name="rate Data">
                        <B Name="rate information" Default="0x01,0x02,0x03,0x04,0x05,0x06,0x07,0x08"/>
                      </S>
                    </SC>
                    <SC Name="seq Structure">
                      <S Name="seq Header">
                        <C Name="seq" ASCIIValue="seq"/>
                        <L Name="Length of Data" ConditionedName="seq Data" Size="4" NetworkOrder="1"/>
                      </S>
                      <S Name="seq Data">
                        <B Name="seq information" Default="0x01,0x02,0x03,0x04,0x05,0x06,0x07,0x08"/>
                      </S>
                    </SC>
                  </SE>
                </R>
                <S Name="LIST Header">
                  <L Name="Length of Data" ConditionedName="LIST Data" Size="4" NetworkOrder="1"/>
                </S>
                <SC Name="LIST Data">
                  <S Name="INAM Header">
                    <C Name="INAM" ASCIIValue="INAM"/>
                    <L Name="Length of Data" ConditionedName="INAM Data" Size="4" NetworkOrder="1"/>
                    <B Name="INAM Data" ASCIIDefault="beSTORM" Suffix="0x00"/>
                  </S>
                  <S Name="IART Header">
                    <C Name="IART" ASCIIValue="IART"/>
                    <L Name="Length of Data" ConditionedName="IART Data" Size="4" NetworkOrder="1"/>
                    <B Name="IART Data" ASCIIDefault="beSTORM" Suffix="0x00"/>
                  </S>
                  <S Name="fram Header">
                    <C Name="fram" ASCIIValue="fram"/>
                  </S>
                  <R Name="repeater icon">
                    <S Name="icon Header">
                      <C Name="icon" ASCIIValue="icon"/>
                      <L Name="Length of Data" ConditionedName="icon Data" Size="4" NetworkOrder="1"/>
                      <B Name="icon Data" Default="0x00, 0x00, 0x02, 0x00, 0x01, 0x00, 0x20, 0x20, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0xe8, 0x02, 0x00, 0x00, 0x16, 0x00, 0x00, 0x00, 0x28, 0x00, 0x00, 0x00, 0x20, 0x00, 0x00, 0x00, 0x40, 0x00, 0x00, 0x00, 0x01, 0x00, 0x04, 0x00, 0x00, 0x00, 0x00, 0x00, 0x80, 0x02, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0xff, 0x00, 0xc0, 0xc0, 0xc0, 0x00, 0x80, 0x80, 0x80, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x11, 0x10, 0x00, 0x00, 0x00, 0x01, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x11, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x11, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01, 0x10, 0x00, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x10, 0x23, 0x23, 0x23, 0x23, 0x23, 0x23, 0x23, 0x23, 0x23, 0x23, 0x20, 0x10, 0x00, 0x00, 0x01, 0x00, 0x32, 0x22, 0x22, 0x22, 0x22, 0x22, 0x22, 0x22, 0x22, 0x22, 0x30, 0x01, 0x00, 0x00, 0x01, 0x00, 0x22, 0x22, 0x22, 0x22, 0x22, 0x22, 0x22, 0x22, 0x22, 0x22, 0x20, 0x01, 0x00, 0x00, 0x01, 0x00, 0x32, 0x00, 0x02, 0x00, 0x02, 0x22, 0x22, 0x02, 0x00, 0x02, 0x30, 0x01, 0x00, 0x00, 0x01, 0x00, 0x22, 0x02, 0x02, 0x02, 0x02, 0x02, 0x22, 0x02, 0x22, 0x02, 0x20, 0x01, 0x00, 0x00, 0x01, 0x00, 0x32, 0x02, 0x02, 0x02, 0x02, 0x22, 0x22, 0x02, 0x00, 0x02, 0x30, 0x01, 0x00, 0x00, 0x01, 0x00, 0x22, 0x02, 0x02, 0x02, 0x02, 0x02, 0x22, 0x02, 0x02, 0x22, 0x20, 0x01, 0x00, 0x00, 0x01, 0x00, 0x32, 0x00, 0x02, 0x00, 0x02, 0x22, 0x22, 0x02, 0x00, 0x02, 0x30, 0x01, 0x00, 0x00, 0x01, 0x00, 0x22, 0x22, 0x22, 0x22, 0x22, 0x22, 0x22, 0x22, 0x22, 0x22, 0x20, 0x01, 0x00, 0x00, 0x00, 0x10, 0x32, 0x32, 0x32, 0x32, 0x32, 0x32, 0x32, 0x32, 0x32, 0x32, 0x30, 0x10, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00, 0x11, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x11, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x11, 0x00, 0x00, 0x00, 0x00, 0x11, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x10, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0xff, 0xc0, 0x1f, 0xff, 0xff, 0xc0, 0x1f, 0xff, 0xff, 0xc0, 0x1f, 0xff, 0xff, 0xc0, 0x1f, 0xff, 0xff, 0xc0, 0x1f, 0xff, 0xff, 0xc0, 0x1f, 0xff, 0xff, 0x00, 0x07, 0xff, 0xfc, 0x00, 0x01, 0xff, 0xf0, 0x00, 0x00, 0x7f, 0xe0, 0x00, 0x00, 0x3f, 0xc0, 0x00, 0x00, 0x1f, 0xc0, 0x00, 0x00, 0x1f, 0x80, 0x00, 0x00, 0x0f, 0x80, 0x00, 0x00, 0x0f, 0x80, 0x00, 0x00, 0x0f, 0x80, 0x00, 0x00, 0x0f, 0x80, 0x00, 0x00, 0x0f, 0x80, 0x00, 0x00, 0x0f, 0x80, 0x00, 0x00, 0x0f, 0x80, 0x00, 0x00, 0x0f, 0xc0, 0x00, 0x00, 0x1f, 0xc0, 0x00, 0x00, 0x1f, 0xe0, 0x00, 0x00, 0x3f, 0xf0, 0x00, 0x00, 0x7f, 0xfc, 0x00, 0x01, 0xff, 0xff, 0x00, 0x07, 0xff, 0xff, 0xc0, 0x1f, 0xff, 0xff, 0xc0, 0x1f, 0xff, 0xff, 0xc0, 0x1f, 0xff, 0xff, 0x1f, 0xff, 0xff, 0xc0, 0x1f, 0xff, 0xff, 0xc0, 0x1f, 0xff, 0x69, 0x63, 0x6f, 0x6e, 0xfe, 0x02"/>
                    </S>
                  </R>
                </SC>
              </SC>
            </SC>
          </SC>
        </SP>
      </P>
    </M>
  </ModuleSettings>
</BESTORM>


More Info:

Beyond Security

is an Approved Scanning Vendor for the Payment Card Industry

Web Application Testing:

Discover security issues in web apps, web sites, their related equipment and databases