Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Look into automatic deobfuscation #67

Open
holly-hacker opened this issue Feb 22, 2021 · 0 comments
Open

Look into automatic deobfuscation #67

holly-hacker opened this issue Feb 22, 2021 · 0 comments
Labels
enhancement New feature or request major-feature A feature worthy of a new release needs research

Comments

@holly-hacker
Copy link
Owner

I should investigate whether it is possible to optimize/deobfuscate the IL that is fed into the decompiler, to allow for cleaner decompilation output.

Preferably, the following optimizations should take place:

  • Evaluating pure operations (assuming they cant be hooked) such as Math.* or sizeof
  • Eliminating dead branches. This would include switch statements.

For more advanced implementations, it could also look at existing methods in the binary and check if they are pure. The optimization/deobfuscation logic should be moved to another project/repo, so it can be developed independently.

This may require a custom decompiler, in which case I should look into just copying the existing implementation (since dnSpy is no longer being developed).
@holly-hacker holly-hacker added enhancement New feature or request needs research major-feature A feature worthy of a new release labels Feb 22, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request major-feature A feature worthy of a new release needs research
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@holly-hacker