Poisoning security tools that use obsolate crypto.
Works-on-my-machine version, feedback is welcome!
- Visual Studio 2012 to compile the projects (Express will do)
- PHP (CLI) >=5.4 to run longEgg (referenced as submodule)
- Fastcoll for collisions
Extract Fastcoll to the fastcoll directory. Name the executable fastcoll.exe
Put php.exe in your PATH.
Use shepherd.bat to generate wolf.exe and sheep.exe:
> shepherd.bat YOURPASSWORD your_shellcode.raw
After this step you should have your two colliding binaries (sheep.exe and wolf.exe in the long_egg directory).
For more information see the tutorial of Nate McHugh, older revisions of this document or the source code...
MD5.php of longEgg uses PHP 5.4 syntax for declaring arrays. If you're using an older version you should replace [x, y, z] declarations to array(x, y, z).
- Improve longEgg to accept parameters
- Eliminate PHP
Creative Commons Attribution-NonCommercial 4.0 International (https://creativecommons.org/licenses/by-nc/4.0/)