[40241] in bugtraq
(TOOL) TAPiON (Polymorphic Decryptor Generator) Engine
daemon@ATHENA.MIT.EDU (Piotr Bania)
Fri Sep 9 15:33:29 2005
Message-ID: <4321A803.4010106@gmail.com>
Date: Fri, 09 Sep 2005 17:19:31 +0200
From: Piotr Bania <bania.piotr@gmail.com>
MIME-Version: 1.0
To: FULLDISC <full-disclosure@lists.grok.org.uk>,
SBUGTRAQ <bugtraq@securityfocus.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Hi,
TAPiON engine was developed to avoid code detection (shellcode/whatever).
The engine can create unical decryptor, encrypt original data and
decrypt it on the fly (while code executes).
MAIN FEATURES:
# decryption key based on randomly generated decryptor (attacker
breakpoint insertion will cause invalid decryption)
# decryption based on CPU time (selected randomly) - anti emulator
code.
# RDTSC / coprocessor instructions usage - anit emulator code.
# random step of block xoring
# random step of key increasing
# random registers usage
# multiple instructions variants
# block swapping
# garbage engine (normal instructions / coprocessor instructions)
# block swapping
# random decryptor size
# multiple decryptor layers generation
DOWNLOAD AT:
-----------
http://pb.specialised.info/all/tapion/
best regards,
Piotr Bania
--
--------------------------------------------------------------------
Piotr Bania - <bania.piotr@gmail.com> - 0xCD, 0x19
Fingerprint: 413E 51C7 912E 3D4E A62A BFA4 1FF6 689F BE43 AC33
http://pb.specialised.info - Key ID: 0xBE43AC33
--------------------------------------------------------------------
" Dinanzi a me non fuor cose create
se non etterne, e io etterno duro.
Lasciate ogne speranza, voi ch'intrate "
- Dante, Inferno Canto III
