Security Hero Rotating Header Image

Obfuscated patches

Obfuscated patches

Posted by Dennis Yurichev on Apr 21

Hi.

Just curious: will we see one day obfuscated patches
(in a manner of obfuscated code) to make reverse engineer’s
(who would like to create exploits after security patches out)
work harder?

URL: http://seclists.org/fulldisclosure/2009/Apr/0215.html

3 Comments

  1. "Full Disclosure (fulldisclosure) Mailing List" says:

    Re: Obfuscated patches

    Posted by Pedro Hugo on Apr 21

    Hello,

    If it’s a patch why do you need to obfuscate ? Patch the binary and bindiff
    it 🙂

    If you are talking about starting to obfuscate the resulting binaries,
    that’s a dark way to go… Waste of cpu cycles, compatibility problems, etc
    etc etc…

    Pedro

    On 4/21/09 11:08, "Dennis…

    URL: http://seclists.org/fulldisclosure/2009/Apr/0221.html

  2. "Full Disclosure (fulldisclosure) Mailing List" says:

    Re: Obfuscated patches

    Posted by Valdis.Kletnieks_at_vt.edu on Apr 21

    On Tue, 21 Apr 2009 13:08:50 +0300, Dennis Yurichev said:

    > Just curious: will we see one day obfuscated patches
    > (in a manner of obfuscated code) to make reverse engineer’s
    > (who would like to create exploits after security patches out)
    > work harder?

    HMASPZAP. You’re about a…

    URL: http://seclists.org/fulldisclosure/2009/Apr/0217.html

  3. "Full Disclosure (fulldisclosure) Mailing List" says:

    Re: Obfuscated patches

    Posted by Pedro on Apr 21

    Hello,

    If it’s a patch why do you need to obfuscate ? Patch the binary and bindiff
    it 🙂

    If you are talking about starting to obfuscate the resulting binaries,
    that’s a dark way to go… Waste of cpu cycles, compatibility problems, etc
    etc etc…

    Pedro

    On 4/21/09 11:08, "Dennis…

    URL: http://seclists.org/fulldisclosure/2009/Apr/0216.html

Leave a Reply

Your email address will not be published. Required fields are marked *