📚
OpenRCE
is preserved as a read-only archive. Launched at RECon Montreal in 2005. Registration and posting are disabled.
About
Articles
Book Store
Distributed RCE
Downloads
Event Calendar
Forums
Live Discussion
Reference Library
RSS Feeds
Search
Users
What's New
Customize Theme
bluegrey
blackgreen
metal
simple
Flag:
Tornado!
Hurricane!
Login:
Password:
Remember Me
Register
Blogs
>>
Piotr
's Blog
Created: Friday, September 16 2005 06:58.01 CDT
Modified: Friday, September 16 2005 06:59.50 CDT
Printer Friendly ...
TAPiON ver.0.1c is now available
Author:
Piotr
# Views:
2058
16/09/2005
----------
Tapion 0.1c engine release, with following changes:
- gen_block9 may be not used in the decoder when there is no "password stepping"
currently it is selected randomly, as you can see the detection based
on the fact gen_block9 always appears in the decoder is wrong because
now sometimes it's not
- added 3rd xchg variant to block4 generator
- added LOCK prefix to decryption algorithm (it has good and bad sides,
generally LOCK prefix occurency is pretty rare and it can be found
as suspicious. The good sides are that it should eat more CPU (due to the
nature of LOCK prefix), also it may confuse some weak emulators.
- added multiple variants for xoring encryption
- added variants for inc/dec blocks
- added lodsd variant to block6 generator, when source is ESI register
- added some big decryption loop support (short/long jumps),
JG NEAR (2 bytes) or JG LONG (6 bytes) based on decryption loop size
- added jump garbaging with 19 different jump instructions
- added garbaging to all blocks, except inc/dec/rdtsc block (too much size)
well it was missing somehow in previous version (lazy me)
- some small fixes
- there is also some low possibility decryptor will be invalid
http://pb.specialised.info/all/tapion/
Add New Comment
Comment:
There are
31,328
total registered users.
Recently Created Topics
[help] Unpacking VMP...
Mar/12
Reverse Engineering ...
Jul/06
let 'IDAPython' impo...
Sep/24
set 'IDAPython' as t...
Sep/24
GuessType return une...
Sep/20
About retrieving the...
Sep/07
How to find specific...
Aug/15
How to get data depe...
Jul/07
Identify RVA data in...
May/06
Question about memor...
Dec/12
Recent Forum Posts
Finding the procedur...
rolEYder
Question about debbu...
rolEYder
Identify RVA data in...
sohlow
let 'IDAPython' impo...
sohlow
How to find specific...
hackgreti
Problem with ollydbg
sh3dow
How can I write olly...
sh3dow
New LoadMAP plugin v...
mefisto...
Intel pin in loaded ...
djnemo
OOP_RE tool available?
Bl4ckm4n
Recent Blog Entries
halsten
Mar/14
Breaking IonCUBE VM
oleavr
Oct/24
Anatomy of a code tracer
hasherezade
Sep/24
IAT Patcher - new tool for ...
oleavr
Aug/27
CryptoShark: code tracer ba...
oleavr
Jun/25
Build a debugger in 5 minutes
More ...
Recent Blog Comments
nieo
on:
Mar/22
IAT Patcher - new tool for ...
djnemo
on:
Nov/17
Kernel debugger vs user mod...
acel
on:
Nov/14
Kernel debugger vs user mod...
pedram
on:
Dec/21
frida.github.io: scriptable...
capadleman
on:
Jun/19
Using NtCreateThreadEx for ...
More ...
Imagery
SoySauce Blueprint
Jun 6, 2008
[+] expand
View Gallery
(11) /
Submit
Printer Friendly ...
![[+] expand](/imagery/files/soysauce_blueprint.gif){kind=link}