featur: make anti-debug more configurable

2026-06-02 17:27:10 +00:00 · 2024-06-26 03:03:13 +02:00
parent a17ea74e6e
commit 2b576df872
3 changed files with 40 additions and 14 deletions
@@ -60,9 +60,20 @@ def create_c_from_template(settings: Settings, payload_len: int):
    filepath_antiemulation = PATH_ANTIEMULATION + "{}.c".format(
        settings.plugin_antiemulation)
    with open(filepath_antiemulation, "r", encoding='utf-8') as file:
+        sir_iteration_count = 5
+        sir_alloc_count = int(config.get("sir_target_mem") / payload_len)+1
+        # if too large, compiler will add a __checkstk dependency
+        if sir_alloc_count > 256:
+            sir_alloc_count = 256
+        logging.info("   AntiEmulation target: iterations: {} alloc: {}".format(
+            sir_iteration_count, sir_alloc_count)
+        )
+
        plugin_antiemualation = file.read()
        plugin_antiemualation = Template(plugin_antiemualation).render({
            'PAYLOAD_LEN': payload_len,
+            'SIR_ALLOC_COUNT': sir_alloc_count,
+            'SIR_ITERATION_COUNT': sir_iteration_count,
        })

    # Plugin: Decoy