Research paper is also an executable x86 program [pdf]

Here&#x27;s the companion video for the paper: <a href="https:&#x2F;&#x2F;www.youtube.com&#x2F;watch?v=LA_DrBwkiJA" rel="nofollow">https:&#x2F;&#x2F;www.youtube.com&#x2F;watch?v=LA_DrBwkiJA</a>

Reminds me a PDF which is also bootable x86 image from PoC||GTFO [1], specifically the second issue (0x02) on section 8 “This OS is also a PDF”<p>[1] <a href="https:&#x2F;&#x2F;pocorgtfo.hacke.rs&#x2F;" rel="nofollow">https:&#x2F;&#x2F;pocorgtfo.hacke.rs&#x2F;</a>

Not only that, but it is an executable x86 program <i>written in a printable subset of x86 instructions</i> (so no self-modifying code), as noted in the section 3 with a comparison to the similarly printable EICAR anti-virus test file.

Many years ago, I wrote up a post on doing this kind of thing in plain DOS .com files: <a href="https:&#x2F;&#x2F;imrannazar.com&#x2F;articles&#x2F;x86-printable-opcodes" rel="nofollow">https:&#x2F;&#x2F;imrannazar.com&#x2F;articles&#x2F;x86-printable-opcodes</a><p>It&#x27;s good to see the principle can be expanded to EXEs, I&#x27;ll have to dig into this some more.

Justine is probably adding both targets to the αcτµαlly pδrταblε εxεcµταblε toolchain

When he talked about the inability to jump to certain places it reminded me of a powerpoint I read a decade or two back that discussed the disassembly of Skype. They used any and every trick in the book to make disassembly impossible, like calculating an int, feeding it to a cosine instruction and the result would be the jump distance. I tried finding the powerpoint but alas Google is garbage these days, maybe the author can find some hints in there to reduce the amount of code coming out of the compiler.<p>Wish I had come up with this compiler, great stuff.

One of my employees once wrote a specification for his vignette correction algorithm in Postscript.<p>The illustrations and charts were actual examples of his algorithm, being executed at render time.

Lazy question, sorry briefly skimmed the PDF and this doesn’t do this, but hypothetically could one design a PDF file generator technique the produces a spec compliant file that uses this technique to chain load another arbitrary base64 encoded binary stored inside the PDF. Maybe someone has already done that.

I love this guy&#x27;s content so much. Easily one of my favorite programming content creators around

Tom7 the goat

Contrary to what&#x27;s in the paper, I&#x27;m pretty sure IMUL-by-constant is in fact useful, since you can use subtraction:<p><pre><code> x * (a - b) === x * a - x * b </code></pre> and this applies even when losing the top half.

Is it executable by renaming the .txt file to an .exe or what?

This is a very impressive and fun piece of work!

What does it do when executed?

reminds me of PoC || GTFO e-zine stuff :D fun things! cool piece!

Knuth would approve of this literate programming?

hard core science!