/ABDScripts

Identify and remove opaque predicates and range dividers with miasm and radare2

Primary LanguagePython

ABDScripts

Scripts to identify and remove opaque predicates and range dividers from Xtunnel and Asprox accordingly. Based on Yuma Kurogome’s ABD course materials, using radare2 and miasm (0.1.3.dev39)

Some results

XTunnel opaque predicates

image

Asprox range dividers

image

The Course

https://github.com/malrev/ABD

Walkthrough

https://ulexec.github.io/ulexec.github.io/article/2020/03/03/Deobfuscation_1.html

Some references

https://mediatum.ub.tum.de/doc/1367533/1367533.pdf https://www.researchgate.net/publication/311491954_Code_obfuscation_against_symbolic_execution_attacks