Home page logo

bugtraq logo Bugtraq mailing list archives

(TOOL) TAPiON (Polymorphic Decryptor Generator) Engine
From: Piotr Bania <bania.piotr () gmail com>
Date: Fri, 09 Sep 2005 17:19:31 +0200


TAPiON engine was developed to avoid code detection (shellcode/whatever).

The engine can create unical decryptor, encrypt original data and decrypt it on the fly (while code executes).


#  decryption key based on randomly generated decryptor (attacker
   breakpoint insertion will cause invalid decryption)

#  decryption based on CPU time (selected randomly) - anti emulator

#  RDTSC / coprocessor instructions usage - anit emulator code.

#  random step of block xoring

#  random step of key increasing

#  random registers usage

#  multiple instructions variants

#  block swapping

#  garbage engine (normal instructions / coprocessor instructions)

#  block swapping

#  random decryptor size

#  multiple decryptor layers generation



best regards,
Piotr Bania

Piotr Bania - <bania.piotr () gmail com> - 0xCD, 0x19
Fingerprint: 413E 51C7 912E 3D4E A62A  BFA4 1FF6 689F BE43 AC33
http://pb.specialised.info  - Key ID: 0xBE43AC33

                          " Dinanzi a me non fuor cose create
                            se non etterne, e io etterno duro.
                            Lasciate ogne speranza, voi ch'intrate "
                                          - Dante, Inferno Canto III

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]