drew sicard
Reputation: 1
Lifting an obfuscated stack machine to LLVM IR
I am researching a code virtualization solution named VMProtect, which creates a custom stack machine with a virtual instruction set, to obfuscate code. What I want to do, is lift every virtual machine instruction handler, most of which consists of stack based operations, to LLVM IR, and then apply optimization and recompile.
I will be using llvm's IRBuilder for this.
Some of my questions are:
- How can push/pop be represented in IR
- What would a handler like this look like in IR
mov rdx, [rbp] ; get virtual stack operand
add rbp, 8 ; add to stack pointer
mov [rax+rdi], rdx ; move to scratch space
Upvotes: 0
Views: 707
Answers (0)
Related Questions
- How can i Lifting x86_64 assembly code to LLVM-IR?
- Translating armv7m instructions into LLVM IR
- Translating armv7m instructions to llvm IR
- Automated x86 instruction obfuscation
- Obfuscating integer constants with an LLVM pass
- x86 - Assembly language encryption/obfuscation - how to reverse?
- How to obfuscate x86 assembly code?
- Translation of machinecode into LLVM IR (disassembly / reassembly of X86_64. X86. ARM into LLVM bitcode)
- convert to LLVM IR: how to create virtual register instead of allocate a stack variable?
- Dynamic obfuscation by self-modifying code