, 2004-09-07
Eager to tarnish Microsoft's shiny new Service Pack 2, the security press managed to spin the most thin and marginal issues into "gaping holes" and "security craters."
Expand all |
Post comment
Feast of Egos
2004-09-08
Todd Knarr (2 replies)
Todd Knarr (2 replies)
Using a compiler to modify code isn't as easy as you would think as most AV can still check this because they look at instruction finger prints, i.e., common sections of code, as it is hard to obfuscate the entire program, not to mention that optimizers tend to reduce padded code to similar sections.
You could do it by dissassembling the code and putting random jumps all over the place, but the headache that would cause trying to keep your jump statements straight would probably force one to madness, not to mention I would think AV software could easily spot it excessive jmp statements in code.
[ reply ]
Link to this comment: http://www.securityfocus.com/comments/columns/265/28439#28439