{"id":3203,"date":"2011-10-06T16:42:23","date_gmt":"2011-10-06T15:42:23","guid":{"rendered":"https:\/\/www.darknet.org.uk\/?p=3203"},"modified":"2017-06-05T01:00:26","modified_gmt":"2017-06-04T17:00:26","slug":"ciat-the-cryptographic-implementations-analysis-toolkit","status":"publish","type":"post","link":"https:\/\/www.darknet.org.uk\/2011\/10\/ciat-the-cryptographic-implementations-analysis-toolkit\/","title":{"rendered":"CIAT &#8211; The Cryptographic Implementations Analysis Toolkit"},"content":{"rendered":"<p>The Cryptographic Implementations Analysis Toolkit (CIAT) is a compendium of command line and  graphical  tools  whose  aim  is  to  help  in  the  detection  and  analysis  of  encrypted  byte sequences within files (executable and non-executable). It is particularly helpful in the forensic analysis and reverse engineering of malware using cryptographic code and encrypted payloads.<\/p>\n<p>This was an interesting find because it wasn&#8217;t too long ago I published a post about <a href=\"https:\/\/www.darknet.org.uk\/2011\/08\/mediggo-tool-to-detect-weak-or-insecure-cryptosystems-using-generic-cryptanalysis-techniques\/\">Mediggo, a Tool To Detect Weak Or Insecure Cryptosystems Using Generic Cryptanalysis Techniques<\/a>.<\/p>\n<p><strong>Requirements <\/strong><\/p>\n<p>Windows  Binaries  included  in  this  distribution  as  well  as  supporting  libraries  were  compiled using gcc, Mingw and Msys. <\/p>\n<p>Linux binaries were compiled using gcc 4.1.2. They were tested from command line in machine with Windows Vista Home Premium (32 bit + SP1) and on Linux Gentoo 2008.0 X86 operating systems.<br \/>\n <script async src=\"https:\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-3033787195489589\"\r\n     crossorigin=\"anonymous\"><\/script>\r\n<!-- Darknet Responsive Post Ad Links [previously link ad unit] -->\r\n<ins class=\"adsbygoogle\"\r\n     style=\"display:block\"\r\n     data-ad-client=\"ca-pub-3033787195489589\"\r\n     data-ad-slot=\"5456620019\"\r\n     data-ad-format=\"auto\"><\/ins>\r\n<script>\r\n     (adsbygoogle = window.adsbygoogle || []).push({});\r\n<\/script><br \/>\nThey should run without problems in any computer with Windows 2000, XP or VISTA 32bit and any  Linux  x86  with  Mesa3-D,  but I  cannot guarantee  that. If  you  have  problems  with  these<br \/>\nbinaries or want to run the programs in other platform you\u2019ll need to compile them yourself.<\/p>\n<p><strong>Compiling <\/strong><\/p>\n<p>Version  1.02  includes  standard  configuration  scripts for Unix  like  systems.  The  old  Makefile (Makefile.linux32) is still included; if you use Windows I suggest you use MINGW+MSYS.  <\/p>\n<p>You can download CIAT v1.02 here:<\/p>\n<p><a href=\"https:\/\/downloads.sourceforge.net\/project\/ciat\/ciat\/1.02\/ciat-1.02.zip?r=https%3A%2F%2Fsourceforge.net%2Fprojects%2Fciat%2F&#038;ts=1496595592&#038;use_mirror=jaist\">ciat-1.02.zip<\/a><\/p>\n<p>Or read more <a href=\"http:\/\/sourceforge.net\/projects\/ciat\/\">here<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The Cryptographic Implementations Analysis Toolkit (CIAT) is a compendium of command line and graphical tools whose aim is to help in the detection and analysis of encrypted byte sequences within files (executable and non-executable). It is particularly helpful in the forensic analysis and reverse engineering of malware using cryptographic code and encrypted payloads. This was [&hellip;]<\/p>\n","protected":false},"author":25,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_seopress_robots_primary_cat":"","_seopress_titles_title":"","_seopress_titles_desc":"","_seopress_robots_index":"","_genesis_hide_title":false,"_genesis_hide_breadcrumbs":false,"_genesis_hide_singular_image":false,"_genesis_hide_footer_widgets":false,"_genesis_custom_body_class":"","_genesis_custom_post_class":"","_genesis_layout":"","footnotes":""},"categories":[26,28],"tags":[8871,627,8872,5627],"featured_image_src":null,"featured_image_src_square":null,"author_info":{"display_name":"Darknet","author_link":"https:\/\/www.darknet.org.uk\/author\/darknet\/"},"_links":{"self":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/3203"}],"collection":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/users\/25"}],"replies":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/comments?post=3203"}],"version-history":[{"count":0,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/3203\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/media?parent=3203"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/categories?post=3203"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/tags?post=3203"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}