The program essentially reduces the number of possible instructions to test to a manageable 100,000. Each is performed and anomalous activity is recorded for later perusal. The most important thing? Domas has found a so-called “halt and catch fire” instruction in a chip that he has declined to name. These sorts of calls – originally found in the Pentium chip and called f00f – can shut down a computer instantly, resulting in data loss. It’s the first real “f00f”-like attack found in 20 years.
Most of us won’t find anything unusual but it is useful to test your processor for, say, undocumented calls that may affect future programs. Think of it as a chkdsk for your processor.
You can download Sandsifter here and run it on your computer as long as you have the Capstone engine install installed. It can take a few hours to scan your entire system and Domas is even offering to look over anomalous logs so let him know if you find something odd.
