Guess who's back, back again!
 Piotr Bania (Piotr) <bania piotr gmailcom> |
Tuesday, November 14 2006 14:01.52 CST |
CODENAME 4514N - PRE-ANNOUNCE PROPAGANDA
----------------------------------------
Just some info for those who are interrested. I'm currently
working on my masterpiece project, a first gui oriented and
the most advanced integrating-metamorphic engine so far.
Integration engine allows user to integrate any code to any
PE binary file (x86 processors), including device drivers
etc. etc. 4514N engine can rebuild all the PE structure,
internal offsets (jumps,refferences), any type of PE
sections (relocs,imports,exports,resources...), moreover it
even can keep the align of variables. Integration means
that firstly target file is disassembled to pieces (it
creates a chain which connects the body of target file),
then we move that chain, we do everything we want (i call
this step InverseKinematics, just because i'm an 3d graphics hobbyst) and then we compile the chain again. Such horrible
modified application runs perfectly, moreover it is almost
impossible to disinfect the modified target. So tell me, do
you want to compile a rootkit inside of yours ndis.sys? :)
I'm attaching a link to flash demo, where i'm integrating
NOPS to freecell game application.
I don't want to speak much about the metamorphic engine
since it is not 100% ready yet. But the main thing you
should know it is mostly based on the emulation process
(and as far as i know it is the first metamorphic engine
which does so), and many of the muation states are based on
the Automaton Theory (which inspired me a lot). Lets
consider the rest of the features as an future surprise :)
So far project includes:
+ own x86 disassembler
+ own x86 assembler
+ own x86 emulator
+ convertor from IDA disassembly to internal 4514N databases.
+ some cool gui, written by hand :)
If you liked Z0mbie's Zmist, MentalDriller's METAPHOR (if we
consider those stuffs as an state of art), i think you will
be not disappointed.
Release time: Unknown ?? - Were you good? Will the Santa visit you this year? :)
Some links:
* Integration demo:
EDITO: (AVI version - ~7mb):
http://piotrbania.com/all/4514N/demo_integrator.avi
SWF version:
http://piotrbania.com/all/4514N/demo.swf
* Some screenshots: http://www.piotrbania.com/all/4514N/a1.jpg
http://www.piotrbania.com/all/4514N/a2.jpg
http://www.piotrbania.com/all/4514N/a3.jpg
But no matta how many fish in the sea
It'll be so empty without me!
Comments
| Posted: Wednesday, December 31 1969 18:00.00 CST | |