Page 2 of 4 FirstFirst 1234 LastLast
Results 16 to 30 of 51

Thread: Armadillo Goblin

  1. #16
    So volodya:

    Would you be referring to "Armadillo nanomites recoverer 1.4 + dumper"? Or some other?

    Regards,
    JMI

  2. #17
    Musician member evaluator's Avatar
    Join Date
    Sep 2001
    Posts
    1,479
    Blog Entries
    1
    vladimir,
    because you wrote: "Zilot is absolutely right"

    i have 1 question:
    how about me?
    Am i right some-where in my previous post(or totally wrong)?

  3. #18
    Who am I to judge if you are totally wrong or not? To my opinion, you were NOT right when you unpacked ZILOT's dumper - Chad should have more work. I hate packers - they SLOW the program!
    For the rest, I can only say it again - you are VERY skilled! That's true. But for some reason you don't want to share your skills as to some packers. I can't really understand why. So, if you take armadillo - WaitForDebugEvent is the key to everything. They may play in detection of 0xCC or sth else, but the PRINCIPAL is the SAME in each and every version of it - fucking SLOW ring-3 tracer!

    JMI
    Mainly, yes. We have one brilliant tutorial by dragon. Another one I'm going to write. infern0 (the author of N-rec 1.4) is talking to me often. But for sure this is not the only one utility. They all have the same principal - CreateRemoteThread inside. Chad may add even more shit into his idiotic tool - it won't help - the PRINCIPAL is the same

  4. #19
    Musician member evaluator's Avatar
    Join Date
    Sep 2001
    Posts
    1,479
    Blog Entries
    1
    volodya,
    once again, i think:

    publishing unpacker forces protector's author to upgrade his protector,
    so better is NOT publish unpacker.

    Please, judge it.

  5. #20
    The development cycle of any commercial product assumes it MUST be a new version each half of the year. Otherwise the project will be shut down.

    evaluator, you are trying to raise a philosophical question here. I'm sorry, but I definitely do NOT have enough time to argue with you here and go into sophistic questions. The one should decide for themselves. But let me give you the situation - you may ignore MS, you may hate it, but, despite of the fact, MS is developing and will be developing more and more ugly software and there is nothing you can do with it.
    The same is with the progress concept in general. One may hate it, one may love it, but in the long run it DOES NOT matter! English people have a nice proverb here: "Dogs bark but caravan goes on".

  6. #21
    volodya: Allow me to anticipate Eval's response. "Too much inglish."

    Remember we need an unpacker just to get the jist of most of Eval's comments.

    And as a complete aside, "English people" aren't generally known to have caravans. We/they, as a group, are not that good at riding camels, one or two humps. That proverb is probably just an English translation of a saying of more qualified camel pilots, who know better the dessert sands and the way of caravans and barking dogs.

    I'll look for the tut you mentioned in the same place I found the tool and trust my luck to a machine translation. The general drift can usually be found in their very rough translations.

    Regards,
    JMI

  7. #22
    : Code Injector : nikolatesla20's Avatar
    Join Date
    Apr 2002
    Location
    :ether:
    Posts
    815
    And you can find the OEP of any copymem arma program in like 2 seconds by simply hooking ContinueDebugEvent.

    -nt20

  8. #23
    Exactly, my friend. THE PRINCIPAL! ring-3 tracer!

    For the rest - perhaps, someday I'm going to translate my tutorials to English if anyone needs it...
    As to the camels - most likely you are right
    I'm not a native speaker, therefore...

  9. #24
    my new hair style :) +SplAj's Avatar
    Join Date
    Feb 2001
    Location
    Afghanistan, Cuba, Iran, Iraq, Libya, North Korea, Sudan and Syria
    Posts
    373

    tuto beni

    Ev@l

    Now U must make a tut on unpacking Obsidium.......
    Carve my name into your arm :)

  10. #25
    Musician member evaluator's Avatar
    Join Date
    Sep 2001
    Posts
    1,479
    Blog Entries
    1
    volodya,
    I am very much upset with your cold position.

    for last words, i decide to correct 2 thing for you:

    1.
    >evaluator, my high skilled body
    i'm musician, unpacking is my hobbie,
    i'm not high skilled in programming or in computer relative knowlidge.

    just i (& all:) can (but yet) enjoy with my trickie mind & phuntasi.

    2.
    i'm not hiding my knowlidge. (& btw, unpacker is not knowlidge)

    **
    +SPLAJ, unpacking is my hobbie, but writing tuts won't to be

  11. #26
    my new hair style :) +SplAj's Avatar
    Join Date
    Feb 2001
    Location
    Afghanistan, Cuba, Iran, Iraq, Libya, North Korea, Sudan and Syria
    Posts
    373

    Conflict of Interest

    Ev@l

    U R hobbie is being a pain in the ass.

    You would freely help assole protectionist by posting unpacked tool. Then REFUSE to help us.

    I say no more to U and in your native tongue 'merda' ciao
    Carve my name into your arm :)

  12. #27
    unpacker is not knowlidge

    If you are just telling what button to push, indeed, it is not. If you are showing some concepts and really demonstrate some theory along with the practice - allow me to disagree.

  13. #28
    Musician member evaluator's Avatar
    Join Date
    Sep 2001
    Posts
    1,479
    Blog Entries
    1
    +SPLAJ, i not understood, maybe you will try easy english?

  14. #29
    evaluator, my friend, +SPLAJ is slightly more rude then necessary, but, in general, he is right. So, would you please delete your attachment of the unpacked Zilot's tool.

  15. #30
    Musician member evaluator's Avatar
    Join Date
    Sep 2001
    Posts
    1,479
    Blog Entries
    1
    volodya,
    because i already sad "last words" to you, so that was last words
    between as. ok?
    (means: forget about me)

    as about attachment, i forward rights to delete[or not] to Woodmann:)

Similar Threads

  1. Armadillo 3.75C
    By MrLoGaN in forum OllyScript Plugin
    Replies: 3
    Last Post: January 17th, 2006, 09:06
  2. Armadillo :-)
    By HANDS in forum OllyDbg Support Forums
    Replies: 9
    Last Post: November 16th, 2005, 04:26
  3. Armadillo
    By Jiggy in forum Malware Analysis and Unpacking Forum
    Replies: 9
    Last Post: March 23rd, 2004, 14:13
  4. Armadillo Tut Req. !
    By fifthelement in forum Malware Analysis and Unpacking Forum
    Replies: 32
    Last Post: February 19th, 2004, 09:09
  5. Armadillo 2.61 =(
    By Mega Desperate in forum Malware Analysis and Unpacking Forum
    Replies: 5
    Last Post: November 4th, 2002, 08:37

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •