Scribd
Upload
77 views7 pages

Crypter

The document discusses crypters, which are used to encrypt executable files and shellcode. Crypters encrypt code at compile time and decrypt it at runtime before executing it, to help bypass antivirus detection. Specific crypter techniques discussed include RC4 stream cipher crypters.

Uploaded by

MotivatioNet
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
77 views7 pages

Crypter

The document discusses crypters, which are used to encrypt executable files and shellcode. Crypters encrypt code at compile time and decrypt it at runtime before executing it, to help bypass antivirus detection. Specific crypter techniques discussed include RC4 stream cipher crypters.

Uploaded by

MotivatioNet
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 7

SecurityTube

 Linux  Assembly  Expert  


(SLAE64)  

Training:                                            hNp://www.SecurityTube-­‐Training.com    
 
Pentester  Academy:  hNp://www.PentesterAcademy.com    

Vivek  Ramachandran  
SWSE,  SMFE,  SPSE,  SGDE,  SISE,  SLAE32,64  Course  Instructor  
©SecurityTube.net  
Module  2:  IntroducSon  to  Shellcoding  

23.  Crypters  

Vivek  Ramachandran  
SWSE,  SMFE,  SPSE,  SGDE,  SISE,  SLAE32  Course  Instructor  

hNp://SecurityTube-­‐Training.com    

©SecurityTube.net  
Crypters  

•  Encrypt  Executable  /  Shellcode  

•  Decrypt  at  runSme  and  run  

•  For  powerful  crypto  techniques  like  RC4,  AES  


etc.  a  lot  of  assembly  code  

•  Shellcode  size  too  large  to  be  useful  

©SecurityTube.net  
RC4  

•  Symmetric  Stream  Cipher    

•  2  Step  process:  
–  Key  Scheduling  Algorithm  

–  Pseudo  Random  Number  GeneraSon    

•  Full  Details:  hNp://en.wikipedia.org/wiki/RC4    

©SecurityTube.net  
WriSng  an  RC4  Shellcode  Crypter  in  C  

•  EncrypSon  Phase:    
–  For  a  given  key,  encrypts  shellcode  

•  DecrypSon  Phase:  
–  For  the  same  key,  decrypts  shellcode  
–  Executes  it  

©SecurityTube.net  
RC4  in  Assembly  

•  hNps://thunked.org/programming/rc4-­‐in-­‐
assembly-­‐t23.html  

•  hNp://youritguy.wordpress.com/2010/06/13/
adler-­‐32-­‐and-­‐rc4-­‐in-­‐inline-­‐assembly/    

•  hNp://nayuki.eigenstate.org/page/rc4-­‐cipher-­‐
in-­‐x86-­‐assembly    

©SecurityTube.net  
Pentester  Academy  

©SecurityTube.net  

You might also like