Hi,

i actually searching for different papers concerning the topics mentioned in the title. I don't want information about securom and other commercial protections. I'm more interested in custom stuff, "In the wild"-examples or theoretical papers.

Would be great if someone can provide some interesting documents.

Thx in advance,

OHPen aka PAPiLLiON

Posted on RETeam..

http://streho.blog.cz/0703/advanced-self-modifying-code

Don't know if it will help you... It's not a paper but a live example. It's called Polymorphic Decryption Crackme by The+Q. Avalaibe at http://www.crackmes.de/users/theq/pdc/

Thank you guys,

both links seems to be valuable

But the more i get the better it is, hehe.

Cu,

PAPi

I've been looking for similar stuff recently (particularly being able to implement from high level language, C at least ) and i came across this issue of codebreakers journal.



--
bedrock

Hehe cool,

thank you bedrock. Nice document.

PAPi

I think it's a horrible document.

His C code relies on quirks of the compiler. I suggest not to try using self-modifying code in languages that don't support it, unless you want your program to be broken the next compiler update.

Executing code on the stack is plain stupid. Only 2 people have patches that don't allow code on the stack? Maybe he forgot *every computer that runs Windows XP SP2*! _http://support.microsoft.com/kb/875352

Maybe he should just set the code section to writable in the header or with VirtualProtect

Sorry for the rant, just had to get it out. No offense meant to bedrock.

None taken, i didn't write it, i just found it and read it

--
bedrock