weak1337 / alcatraz Goto Github PK
View Code? Open in Web Editor NEWx64 binary obfuscator
x64 binary obfuscator
Having Problems compiling probably because of zydis version mismatch. I used vcpkg and it probably downloaded the newest version which is incompatible.
How can I download the right binaries or do I need to compile them myself? Or can you provide them, or with the whole project?
Hi, I'm getting this error when trying to compile with msbuild
Build started 2/21/2023 7:58:28 PM.
Project "C:\Users\this1\Desktop\Anonfiles-xss\Alcatraz\Alcatraz-gui\Alcatraz-gui.vcxproj" on node 1 (default targets).
C:\Users\this1\Desktop\Anonfiles-xss\Alcatraz\Alcatraz-gui\Alcatraz-gui.vcxproj(28,3): error MSB4019: The imported project "C:\Microsoft.Cpp.Default.props" was not found. Confirm that the path in the declaration is correct, and that the file exists on disk.
Done Building Project "C:\Users\this1\Desktop\Anonfiles-xss\Alcatraz\Alcatraz-gui\Alcatraz-gui.vcxproj" (default targets) -- FAILED.
I also tried to use visual studio co build the sln file but that didn't work either (80 errors).
keep trying to load a certain exe and getting this error. i tried rebuilding all already. it worked fine when attempting to put my dll in.
I'm using these versions of asmjit and zydis
asmjit:x64-windows 2023-03-25 Complete x86/x64 JIT and Remote Assembler for C++
zycore:x64-windows 1.3.0#1 Provides platform independent types, macros and ...
zydis:x64-windows 4.0.0 Fast and lightweight x86/x86-64 disassembler lib...
I'm getting attached errors, please let me know if any version is wrong and suggest on following issue.
I tried to obf OpenCV,but the num of function is big. occured crash
I did install all Requirements, now how to run Alcatraz with VS?
Is it possible to obfuscate a binary compiled with Clang? I'm using "-g -gcodeview" compiler flags but it seems like final .pdb file is not right. If I'm compiling with Visual Studio's MSVC everything works fine.
Is it possible to make 32 bit support?
Hey @weak1337, How can we change the section name to avoid detection and recognizing protector?
I tried to change the line at :
auto new_section = pe.create_section(".cdata", 10000000, IMAGE_SCN_MEM_EXECUTE | IMAGE_SCN_MEM_READ | IMAGE_SCN_CNT_CODE);
But it doesn't work, Did you hardcoded anything?
Thanks
Hi.
I tried to obfuscate my C++ kernel driver with "DRV_OBJECT". Added one random function to be obfuscated to the list (Release build) and the result is always 0xC000007B STATUS_INVALID_IMAGE_FORMAT when I try to load the driver normally.
I got this working for "C" driver (Debug build) when I did not obfuscated the entry point. And if I remember correctly. Only "Mutate" was working. I ended up wasting several hours of my time while I tried to figure out the cause.
I managed to run this app. Now if I want to load an .exe file (which I've compiled with nuitka) I get an error says: "No linked pdb file. Tried to find xxxxx.pdb without success."
After open a file I get the follow error
It seems to be relate to
Alcatraz/Alcatraz/pdbparser/pdbparser.cpp
Lines 40 to 41 in b4dd215
BTW I compile it using C++ 20
what version are you using?
1>D:\Users\fix\Documents\GitHub\Alcatraz2\Alcatraz\obfuscator\passes\mov.cpp(73,8): error C2665: “asmjit::_abi_1_9::x86::EmitterExplicitT::rol”: 没有重载函数可以转换所有参数类型
I am following the instructions and doing this in the project folder:
Install: https://vcpkg.io/en/getting-started.html
asmjit: vcpkg.exe install asmjit:x64-windows
Zydis: vcpkg.exe install zydis:x64-windows
However when I try to compile I keep getting this error:
Severity Code Description Project File Line Suppression State Error C1083 Cannot open include file: 'Zydis/Zydis.h': No such file or directory Alcatraz-gui C:\Users\darknight\Downloads\Alcatraz-master\Alcatraz-master\Alcatraz\obfuscator\obfuscator.h 3
during the build process and the following error message appears:
Error C1083 Cannot open include file: 'Zydis/Zydis.h': No such file or directory Alcatraz-con C:\Users\Senkin\Desktop\Alcatraz-master\Alcatraz\obfuscator\obfuscator.h 3
I think I have successfully installed vcpkg repo via:
git clone https://github.com/Microsoft/vcpkg.git
.\vcpkg\bootstrap-vcpkg.bat
vcpkg install asmjit:x64-windows
vcpkg install zydis:x64-windows
how can i solve the problem with zydis??
I'm sure the pdb and fileare a match and exist.
GetLastError returns 2
PROBLEM
running mybin.exe prints "Hello, world!"
running mybin.obf.exe causes access violation, decompiled main jumps to bad address
HOW TO REPRODUCE
new c++ project
#include <iostream>
int main() { std::printf("Hello, world!\n"); }
build x64 release
Alcatraz-con.exe bin.exe
Successfully parsed 46 function(s)
OBFUSCATING: 42
Finished in 0.617 seconds
bin.obf.exe
first chance exception on 00007FF6BA85D850 (C0000005, EXCEPTION_ACCESS_VIOLATION)
bin hash: a8ebdcc14f9c6a6b4df591e0573ee04fd201f4242b0a196ebbc2e1c3de45866f
bin.obf hash: a43284fd4d3a8b4f3a4b3f5c4d19227bc6f1d81af88953ba18eca72275bbfee1
didnt look too much at the project but at least you are exploring things
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.