System Shutdown Simulator 1.1 Released

If anyone is interested,

System Shutdown Simulator (SSS) Version 1.1 has been released.

Can be obtained from here: http://zeroday-software.freetzi.com/

___________________________________________

New Features:

This update no longer uses an outbound ping test for the firewall
test component. Now System Shutdown Simulator downloads an actual
file from the internet (a webpage in this case) and tries to open
it. In reality malware could download and run files from the
internet this way.

Change Log:

* New Firewall Test Method Used.

* Clear Button For Payload Results

* Minor GUI Changes

___________________________________________

Release Notes:

* Firewall Leaktest Component Downloads and Opens Webpage. It is
possible that your HIPS software will prevent webpage from opening.
This is still a fail as the file was downloaded successfully.

* Ensure Browser Cache cleared in between subsequent running of
the firewall test component. This will ensure a new file is
downloaded each time the test is run.

* Please report any bugs as there are significant changes in this
version. We recommend everyone to re-run the firewall test component
as misleading results may have been obtained from previous versions
of SSS.

 

Bit Defender IS 2008 (firewall disabled) + Comodo (latest version). The BD icon disappears from tray. However, all tests passed successfully.









Thanks for the test!

 

For the last result,

I've changed it from "Firewall Test file could not be executed"
to
"Firewall Test file could not be downloaded / executed"

This is what it should say. But results wont change

 

Dmenace,

Thx nice test prog. What is your connection with zero day software?

Regards K

 

I never knew about this new version. Just found it today by chance. Thanks Dmenace.

 

It was beter for this file to be an executable, rather than an html file but i understand it needs more effort.
Anyway the FW test is now much more better than before.

 

it would be very intresting to know from dmenace if S.S.S. is truly tring to access SCM as showed us by Fuzzfas...



I don't succeed infact in repeating this behaviour with other HIPS...

Txs in advance

 

All tests passed for me. I am using NOD32 3.0.621.0 and Zone Alarm Anti Spyware. Cool test.

 

sss 1.1.3 beta says that system safety monitor fails the registry test but it doesn't.

http://img504.imageshack.us/my.php?image=ssmrk9.png

 

Ok I think my last post was slightly misleading. I was using the Freeware edition of System safety monitor. But anyway, when I tried to run the sss.exe right after hitting "shutdown" on my PC., I got the 'sss.exe - DLL Initialization Failed : The application failed to initialize because the window station is shutting down.'

So this wouldn't just be able to startup all by itself anyway. Eh ?