- Joined
- Jan 8, 2019
- Messages
- 56,623
- Solutions
- 2
- Reputation
- 32
- Reaction score
- 100,456
- Points
- 2,313
- Credits
- 32,750
6 Years of Service
76%
SGN is a polymorphic binary encoder for offensive security purposes such as generating statically undetecable binary payloads. It uses a additive feedback loop to encode given binary instructions similar to LSFR. This project is the reimplementation of the original Shikata ga nai in golang with many improvements.
How? & Why?
For offensive security community, the original implementation of shikata ga nai encoder is considered to be the best shellcode encoder(until now). But over the years security researchers found several pitfalls for statically detecing the encoder(related work FireEye article). The main motive for this project was to create a better encoder that encodes the given binary to the point it is identical with totally random data and not possible to detect the presence of a decoder. With the help of keystone assembler library following improvments are implemented.
- 64 bit support. Finally properly encoded x64 shellcodes !
- New smaller decoder stub. LFSR key reduced to 1 byte
- Encoded stub with pseudo random schema. Decoder stub is also encoded with a psudo random schema
- No visible loop condition Stub decodes itself WITHOUT using any loop conditions !!
- Decoder stub obfuscation. Random garbage instruction generator added with keystone
- Safe register option. Non of the registers are clobbered (optional preable, may reduce polimorphism)