06.24
Security is notoriously disunited. Every year multiple tools and projects are released and never maintained. TitanMist is its inverse opposite. Built on top of TitanEngine, it provides automation and manages all known and good PEID signatures, unpacking scripts and other tools in one unified tool. TitanMist is the nicely packaged and open source catch-all tool that will become your first line of defense. The project goes beyond pure tool development. It builds a forum to share information and reverse-engineering experience built around the biggest online and collaborative knowledge base regarding software packers.
With the increase in packed and protected malicious payloads, collaboration and quick response among researchers has become critical. As new sample numbers are quickly approaching 40M samples per year, the solution to this problem has to come from reverse-engineers themselves, integrating their prior and current work. Huge databases of format identification data and unpacking scripts can be reused to maximize automation. Yet, where do we find a definite collection of functional tools, identification signatures and unpacking tools? And how do we integrate them in a meaningful and accurate way?
Come to this talk to hear how we plan to raise reversing collaboration to a whole new level with TitanMist. We will address today's and future challenges, source code, packaging and distribution, and define your role in making TitanMist the most powerful community tool for years to come.
This talk will be a BlackHat exclusive; a launch and demonstration of TitanMist, a new open-source project based on TitanEngine. All components will be available for distribution with the conference materials.
See you in Vegas...
Hi!, this sounds a little bit like FUU (http://code.google.com/p/fuu/). Of course, it seems a more complex tool and in a more advanced stage than FUU 0.1 Beta, but i think the idea behind it is the same. Maybe i’m wrong, but in a first look seems that to me.
The idea is quite similar but we introduced a couple of quite handy additions such as TitanScript and the option of using anything as the unpacker. Be it script (TitanScript, OllyScript, LUA or Python) or a binary. Most challenging part was of-course converting OllyScript to a TitanEngine plugin and supporting as much of the TE functionality from the script language itself. That is why we jumped on this project few weeks after the TitanEngine was presented at last BlackHat. We hope that this project will get as much community support as possible as we plan to expand it even further.
Best regards
Yes, it seems like you a bunch of great features. I will need to work harder with FUU
We fully support your work with FUU and are more then interested in seeing both solutions running together. That is something we will most definitively take a look at after we present the TitanMist project.
Best regards
That would be a great thing!!!.
Yeah like +NCR comments we hope than titanmist and Fuu will be the beast Unpack tools of the market
+NCR and other FUU team members are working very hard to have to increase the FUU perfection….
Have a nice BlackHat Conference Titanmist Develop Team…..
Awesome! I can’t wait to try TitanMist. When will it be available to the public?
The TitanMist will be published right after the BlackHat presentation. Therefore no later than 30th July.
Nice! Thanks Admin.