首页
社区
课程
招聘
[分享]UPolyx V0.5
发表于: 2007-10-23 10:42 7253

[分享]UPolyx V0.5

2007-10-23 10:42
7253
-----------------------change between v0.4-------------------------------------------------
Added some permutations

for example

push REG

is the same as

SUB ESP,4
MOV DWORD PTR SS:[ESP],REG

etc...

read poly.cpp

if you have also some nice permutations, mail me....
-------------------------------------------------------------------------------------------

UPolyX "encrypts" the upx stub, in 3 different ways.
-xor one byte key
-xor 4 byte key
-add/sub
the routines/key/registers/encryption-length is randomly generated
it also uses z0mbie's ETG engine.

-----------------------change between v0.3-------------------------------------------------
Here you can read the header file of my simple decrypter engine,which this simple functions
it is easily possible to build a new decrypter in one minute.

#include <windows.h>
#include <stdio.h>

#define RegEax 0
#define RegEcx 1
#define RegEdx 2
#define RegEbx 3
#define RegEsp 4
#define RegEbp 5
#define RegEsi 6
#define RegEdi 7

void StackFrame(BYTE  buf[],int &pos);
void PushReg(BYTE buf[],int Reg,int &pos);
void PopReg(BYTE buf[],int Reg,int &pos);

void AddToRegOneByte(BYTE  buf[],int Reg,int value,int &pos);
void AddToReg(BYTE  buf[],int Reg,int value,int &pos);
void SubFromReg(BYTE  buf[],int Reg,int value,int &pos);

void MoveAddrToReg(BYTE buf[],int Reg,DWORD Addr,int &pos);
void MoveRegToReg(BYTE buf[],int DesReg,int SrcReg,int &pos);

void JumpToReg(BYTE buf[],int Reg,int &pos);
void JumpForward(BYTE buf[],int bytes,int &pos);
void JumpBackward(BYTE buf[],int bytes,int &pos);
int SetLabel(int pos);
void LoopToLabel(BYTE buf[],int label,int &pos);

void XorRegOneByte(BYTE buf[],int Reg,BYTE XorByte,int &pos);
void XorRegFourBytes(BYTE buf[],int Reg,DWORD XorBytes,int &pos);

void Ret(BYTE buf[],int &pos);

---------------License---------------------------------------
Copyright (C) 2004 Delikon

This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 2 of the License, or
(at your option) any later version.

This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
GNU General Public License for more details.

You should have received a copy of the GNU General Public License
along with this program; if not, write to the Free Software
Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA  02111-1307, USA.

[招生]科锐逆向工程师培训(2024年11月15日实地,远程教学同时开班, 第51期)

上传的附件:
收藏
免费 0
支持
分享
最新回复 (8)
雪    币: 238
活跃值: (12)
能力值: ( LV9,RANK:210 )
在线值:
发帖
回帖
粉丝
2
UPolyX v0.1 : --> Link <--
UPolyX v0.2 : --> Link <--
UPolyX v0.3 :--> Link <--
UPolyX v0.4 :--> Link <--
UPolyX v0.5 :--> Link <--
2007-10-23 10:46
0
雪    币: 206
活跃值: (37)
能力值: ( LV2,RANK:10 )
在线值:
发帖
回帖
粉丝
3
不错的工具
值得收藏
2007-10-23 10:50
0
雪    币: 200
活跃值: (10)
能力值: ( LV2,RANK:10 )
在线值:
发帖
回帖
粉丝
4
如何使用? 一点头绪也没
2007-10-23 19:29
0
雪    币: 200
活跃值: (10)
能力值: ( LV2,RANK:10 )
在线值:
发帖
回帖
粉丝
5
我是新手能说明怎么用吗?
2007-11-9 07:58
0
雪    币: 183
活跃值: (16)
能力值: ( LV2,RANK:10 )
在线值:
发帖
回帖
粉丝
6
要怎么才能运行啊。
2008-4-2 02:03
0
雪    币: 215
活跃值: (11)
能力值: ( LV2,RANK:10 )
在线值:
发帖
回帖
粉丝
7
这个工具是干什么用的?
2008-4-2 05:12
0
雪    币: 200
活跃值: (10)
能力值: ( LV2,RANK:10 )
在线值:
发帖
回帖
粉丝
8
who can hanzify it?
2008-4-2 17:46
0
雪    币: 145
活跃值: (59)
能力值: ( LV2,RANK:10 )
在线值:
发帖
回帖
粉丝
9
这个工具是干什么用的?
2008-4-22 15:57
0
游客
登录 | 注册 方可回帖
返回
//