Results 1 to 5 of 5

Thread: Pokas x86 PE Emulator for Generic Unpacking

  1. #1
    AmrThabet
    Guest

    Pokas x86 PE Emulator for Generic Unpacking

    I want to introduce a new application named Pokas Emulator
    Pokas x86 Emulator is an Application-Only emulator created for generic unpacking and testing the antivirus detection algorithms.

    it emulates the PE Executable Files 32-bits versions and monitor all memory writes and include many features . some of them are:
    1. Has an assembler and a disassembler from and to mnemonics.
    2. Support adding new APIs and adding the emulation function to them.
    3. Support a very powerful debugger that has a parser that parses the condition you give and create a very fast native code that perform the check on this condition.
    4. Support seh and support tib, teb, peb and peb_ldr_data.
    5. It monitors all the memory writes and log up to 10 previous Eips and saves the last accessed and the last modified place in memory.
    6. it support 6 APIs:GetModuleHandleA, LoadLibrayA, GetProcAddress, VirtualAlloc, VirtualFree and VirtualProtect.
    7. With all of these it's FREE and open source.

    It successfully emulates:
    1. UPX
    2. FSG
    3. MEW
    4. Aspack
    5. PECompact
    6. Morphine

    But it does contain bugs and it still in the beta version. It surely will be fixed soon ith the help of your feedback.

    It still doesn't support multithreading and doesn't support Linux ELF executables.
    It's still working only on windows but the Linux version will be available soon.

    you can download it from http://sourceforge.net/projects/x86emu/

    AmrThabet
    amr.thabet_*at*_student.alx.edu.eg
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  2. #2
    BackTrace
    Guest
    Thanks AmrThabet, It seems interesting. Would you please make a practical tuto for Pokas.
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  3. #3
    AmrThabet
    Guest
    Thanks BackTrace for your reply and I already added a tutorial for it yesterday you will see it at this link:
    http://www.woodmann.com/forum/showthread.php?13785-Write-your-Own-Unpacker
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  4. #4
    BackTrace
    Guest
    Yes, I saw it. It was very useful and a little messy. But I mean a video tuto like swf files.
    I promise that I have read the FAQ and tried to use the Search to answer my question.

  5. #5
    AmrThabet
    Guest

    Thumbs up

    Hello BackTrace,

    I really hope you like it

    I really need to make a swf tutorial but I don't have the tools and I don't have any information about flash mx ;P

    if you have any information plz contact me

    I hope we continue our conversation by mail amr.thabet[at]student.alx.edu.eg
    I promise that I have read the FAQ and tried to use the Search to answer my question.

Similar Threads

  1. FlexLM.ECC.Generic.Patcher
    By Arlequim in forum Tools of Our Trade (TOT) Messageboard
    Replies: 6
    Last Post: February 24th, 2014, 22:44
  2. Generic unpacking paper revision
    By Piotr Bania Chronicles in forum Blogs Forum
    Replies: 0
    Last Post: July 14th, 2009, 22:37
  3. Replies: 0
    Last Post: July 14th, 2009, 22:37
  4. Generic IDAPro/ASM questions...
    By midnitrcr in forum The Newbie Forum
    Replies: 6
    Last Post: March 15th, 2005, 14:28
  5. Generic ways to find OEP
    By black_ice in forum Malware Analysis and Unpacking Forum
    Replies: 11
    Last Post: November 10th, 2002, 17:52

Tags for this Thread

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •