Hi,

I'm still attempting to get info on how to locate the programs
"Shroud" or "Obfus", or any other program that purposely mangles C
Code so it's unreadable, but still compiles (for security purposes).
 Web searches have been unenlightening...

Thanks,

--
Stephen Kay - composer, producer, programmer

Try Gimpel Software's "C-Shroud". They also make a lint tool.

# http://www.pluris.com/avg/cshred.c
# Someone who wants to put some effort into it can defeat any obfuscator.

Indeed. Stephen, if you need some ideas, find out what the
distinguished experts on obfuscation do. Just a click away at

  http://reality.sgi.com/csp/ioccc/index.html

Code obfuscation should be left to humans, the same way as
code translation from <random-language> to C.

# >Hi,
# >
# >I'm still attempting to get info on how to locate the programs
# >"Shroud" or "Obfus", or any other program that purposely mangles C
# >Code so it's unreadable, but still compiles (for security purposes).
# > Web searches have been unenlightening...
# >
# >Thanks,
# >
# >--
# >Stephen Kay - composer, producer, programmer
#

        Jens - master obfuscator, poet, programmer
--
Jens Schweikhardt  http://www.uni-stuttgart.de/People/schweikhardt
SIGSIG -- signature too long (core dumped)

And a totally different approach is: there are lots of programmers
out there who can produce obfuscated C code right away without
the help of any tools (I could even name some), so simple hire
one of those :-)

Stephan
(initiator of the campaign against grumpiness in c.l.c)

Stephan
(initiator of the campaign against grumpiness in c.l.c)

# >
# > http://www.pluris.com/avg/cshred.c
# > Someone who wants to put some effort into it can defeat any obfuscator.
#
# I agree and BTW, are there any de-obfuscater ? Ie. a tools that
# will take obfuscated C code and put in some nice indentation
# and spacing ? I mean that should really stump all those obfuscation
# freaks out there.

AFAIK, indent(1) is all you might get. But try indenting on, for example

        http://reality.sgi.com/csp/ioccc/1996/schweikh3.c

It (mis)uses __LINE__ instead of a plain number in a place like

        a = b >> __LINE__;

If indenting or some other deobfuscation changes the numer of lines
before this line the code will silently *break*. AI will never be
able to cope with malicous code like that. One needs a brain to
deobfuscate, nothing else will do. Not even a pentium :-)

# And a totally different approach is: there are lots of programmers
# out there who can produce obfuscated C code right away without
# the help of any tools (I could even name some),

Me too! (I always wanted to say that)

# so simple hire one of those :-)

Ask me about my consulting^H^H^H^H^H^H^H^H^Hobfuscation rate :-)

Regards,

        Jens
--
Jens Schweikhardt  http://www.uni-stuttgart.de/People/schweikhardt
SIGSIG -- signature too long (core dumped)

: I'm still attempting to get info on how to locate the programs
: "Shroud" or "Obfus", or any other program that purposely mangles C
: Code so it's unreadable, but still compiles (for security purposes).
:  Web searches have been unenlightening...

http://burks.bton.ac.uk/burks/software/devtools/index.htm#misc
includes a couple of obfuscators...

-----------------------------------------------------------------

 Senior Lecturer           | http://www.comp.it.bton.ac.uk/je
 Dept. of Computing        | ** NON-PROFIT CD FOR CS STUDENTS **
 University of Brighton    |    -- see http://burks.bton.ac.uk
-----------------------------------------------------------------