AutoIt Obfuscator version history

AutoIt Obfuscator version history with changes and bugfixes to the obfuscation engine, Windows client versions and WebAPI interface.

Engine history

v1.94

  • Added support for direct access to array items returned by functions e.g. $nResult = DllCall('shlwapi.dll', 'int', 'StrCmpLogicalW', 'wstr', $sVal1, 'wstr', $sVal2)[0]

v1.93

  • Added handling of arrays initialization without a declared length e.g. $array = [1, 2, 3]

v1.92

v1.91

  • Fixed handling of floating point values without a trailing 0, e.g. $var = .123

v1.9

v1.8

v1.7

  • Fixed handling of COM object properties assignment e.g. $ocrypt.CryptAlgorithm = "aes"

v1.6

  • Added anti regular expression patterns e.g. Global $vx = Asc(StringMid("Random(18, 150 + SRandom(), 162)", 3, 1)) to prevent automatic deobfuscation with simplistic search & replace methods like these
  • Fixed handling of comment blocks #cs & #ce (thx Kao)

v1.5

  • Long awaited parser upgrade to support COM object calls, like WMI components queries e.g. $objWMIService.ExecQuery(...) as well as the support for object properties e.g. MsgBox($objItem.FreeSpace)

v1.4

  • Fixed handling of FileInstall() function. Its first parameter has to be a string literal, and now it's preserved in the obufscated code.

v1.3

  • Proper handling of Null keyword

v1.2

  • Change linear code execution flow to nonlinear version obfuscation strategy added
  • Added an automatic removal of #Region and #EndRegion pragmas
  • Many internal changes and bugfixes

v1.11

  • A new obfuscation strategy - shuffle order of functions in the output source

v1.1

  • Huge speed improvements due to the rewritten AST parsing engine logic

v1.01

  • System variables $CmdLine and $CmdLineRaw are not renamed anymore

v1.0

  • Initial release

Client history

v1.5

  • All binaries were digitally re-signed using Thawte digital certificate. Long story short - our previous certification company StartCOM was banned first from the major web browsers and now in 2019 from Microsoft Windows because of their shady business practices (issuing back dated certificates) and their main CA certificate was revoked, which resulted in blocking any software signed with their digital code signing certificates (even if it was valid till the end of 2019 like in our case). We had huge problems to get a new one with COMODO / Sectigo because of their dumb policies, that required us to be listed in commercial business DUNS directory (1600 USD for a listing) or to have a blue shield of verification on Google Maps (even if this program was discontinued because it required to have a Google Business and now defunct Google+ accounts linked together...). I've been trying to get this new certificate for more than 3 weeks with COMODO without a result and with tons of legal, notary signed company papers, utility bills send to them for verification, they didn't want to issue a code signing certificate no matter what. Finally I have tried to get it from Thawte, and after a simple business verification process, they granted us a new certificate after 2 days. I would like to apologize to all the customers for all the inconvenience in those days when you couldn't use our software.

v1.4

AutoIt Obfuscator Linux command line version
  • All clients updated to support new anti regular expression deobfuscation patterns

v1.3

AutoIt Obfuscator v1.3 main window on Ubuntu Linux
  • You can run both GUI and command line version on latest version

v1.2

AutoIt Obfuscator v1.2 main window
  • Support added for the new code flow mixing obfuscation strategy
  • PHP SDK updated
  • Fixed a bug while saving settings to the Windows Registry

v1.1

AutoIt Obfuscator v1.1 main window
  • Support added for the new obfuscation strategy
  • PHP SDK updated
  • fixed activation code passing in command line version (it's /ActivationCode and it was wrongly described as /ActivationKey)

v1.0

AutoIt Obfuscator v1.0 main window
  • Initial release
  • Windows client
  • Command line version compatible with Windows and Linux (Mono)
  • WebAPI client with PHP usage examples

Any questions?

If you would like to ask me about AutoIt Obfuscator, or something's not clear, mail me. I'll be happy to answer all of your questions.