EXETOOLS FORUM  

Go Back   EXETOOLS FORUM > General > General Discussion

Notices

Reply
 
Thread Tools Display Modes
  #1  
Old 05-09-2004, 21:04
softworm softworm is offline
Friend
 
Join Date: Feb 2004
Posts: 43
Rept. Given: 2
Rept. Rcvd 0 Times in 0 Posts
Thanks Given: 0
Thanks Rcvd at 0 Times in 0 Posts
softworm Reputation: 0
Where can i find paper about unpacking Obsidium?

I searched on google and found nothing detailed,
and i can understand only English.

Regards.
Reply With Quote
  #2  
Old 05-10-2004, 03:31
freddy2002
 
Posts: n/a
This isn't an easy Target (well never seen tutors )
look at:
stolen bytes on OEP
int3 check's
redirect api
SEH
CC check on API address
check cc after the API call in code
steal bytes on API start & jump to next line in API
jump to API with a ret (funny tricks with stack)

and so on
Hope this help you
Reply With Quote
  #3  
Old 05-10-2004, 19:57
softworm softworm is offline
Friend
 
Join Date: Feb 2004
Posts: 43
Rept. Given: 2
Rept. Rcvd 0 Times in 0 Posts
Thanks Given: 0
Thanks Rcvd at 0 Times in 0 Posts
softworm Reputation: 0
I have one paper written in Chinese by my friend fly,
and wish to find something more detailed. It's said a cracker
named ZILOT wrote something interesting but i didn't find it.

Maybe I'll write one when i unpack the unpackMe. Somebody
said it's not difficult but it's hard to me.

Thank you!
Reply With Quote
  #4  
Old 05-10-2004, 20:14
Rheya
 
Posts: n/a
hi softworm,
you may meet Zilot here :
ww.woodmann.net/forum/showthread.php?t=4853
rheya
Reply With Quote
  #5  
Old 12-25-2018, 16:07
pps44 pps44 is offline
Friend
 
Join Date: Jul 2014
Posts: 40
Rept. Given: 44
Rept. Rcvd 8 Times in 5 Posts
Thanks Given: 110
Thanks Rcvd at 28 Times in 11 Posts
pps44 Reputation: 8
any chance for new version of unpack obsidium? thanks
Reply With Quote
  #6  
Old 12-25-2018, 16:50
deepzero's Avatar
deepzero deepzero is online now
VIP
 
Join Date: Mar 2010
Location: Europe
Posts: 212
Rept. Given: 99
Rept. Rcvd 60 Times in 38 Posts
Thanks Given: 81
Thanks Rcvd at 68 Times in 31 Posts
deepzero Reputation: 60
Did you just resurrect a 14 year old thread to spam it?
Reply With Quote
  #7  
Old 12-26-2018, 00:50
pps44 pps44 is offline
Friend
 
Join Date: Jul 2014
Posts: 40
Rept. Given: 44
Rept. Rcvd 8 Times in 5 Posts
Thanks Given: 110
Thanks Rcvd at 28 Times in 11 Posts
pps44 Reputation: 8
Quote:
Originally Posted by deepzero View Post
Did you just resurrect a 14 year old thread to spam it?
i not spam it,I only asked a question because obsidium has changed since then "14" years
and i need some help for unpack the new version
It is not forbidden I believe?
Reply With Quote
  #8  
Old 12-26-2018, 01:38
chants chants is offline
Friend
 
Join Date: Jul 2016
Posts: 331
Rept. Given: 0
Rept. Rcvd 11 Times in 10 Posts
Thanks Given: 264
Thanks Rcvd at 297 Times in 169 Posts
chants Reputation: 11
I don't know why this thread resurrected, but as you might want to look into:
Quote:
Obsidium v1.6.1.9_x32 NONAG by yoza
Quote:
http://distro.crack.vc/index.php?dir=RceTools/Packers/&file=Obsidium.v1.6.1.9_x32.NONAG.by.yoza%5BUpK%5D.rar
Reply With Quote
The Following 2 Users Say Thank You to chants For This Useful Post:
pps44 (12-26-2018), the_beginner (04-18-2019)
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
[PAPER] Statistical Reconstruction of Class Hierarchies in Binaries TechLord General Discussion 0 08-31-2018 15:56
Obsidium lindo General Discussion 2 03-08-2013 10:36
interesting paper .. Shub-Nigurrath General Discussion 0 12-22-2004 23:26


All times are GMT +8. The time now is 14:34.


��ICP��05004977��
Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX