I’m a huge fan of AutoIt – I think the program is a wonderful tool for administrators as well as casual programmers who just like to mess with stuff. However, I recently discovered that the developer of AutoIt, in an ongoing quest for “security,” has disabled the ability to reverse-engineer autoit scripts!
Now, I’m all for security when people write software, but giving scripts this level of security actually introduces security risks! I just don’t like running some random AutoIt script without being able to look at the source code. If I run a “normal” compiled app, my virus scanner will generally let me know if it’s safe to run. But a script written in AutoIt can so easily be a trojan (or other destructive tool) and nothing can likely catch it because of the nature of scripted programs.
Yes, I’m aware somebody could write a C++ app that’s just as dangerous as AutoIt can produce, but this requires a lot more intelligence and effort than just writing an AutoIt script. AutoIt is made to be pretty friendly for non-programmers.
So to me, this is an absurd limitation – all scripts should be reversible for the sake of security! Luckily for the world, somebody has written a usable decompiler called myAutToExe, and I’m providing a local copy of 2.00 Alpha since the site is hard to find and hosted on Angelfire. For the original and latest versions, go to http://defcon5.biz/phpBB3/viewtopic.php?f=5&p=5735.
Note: I haven’t contacted the author of myAutToExe about this (the page has no contact information). I can’t imagine he’d complain, but if anybody knows a way in which I can contact him, I’m all ears. I’d love to set up a proper mirror.
UPDATE: I’ve updated the link to the latest version since being contacted by cw2k (the author of myAutToExe).
UPDATE UPDATE: Fixed the URL for getting the latest version – apparently the forum site moved.
19 Replies to “AutoIt Decompiler for v3.2.6+”
UPDATE UPDATE UPDATE: I forgot to link from here to the new article: http://blog.nerdbucket.com/autoit-fans-rejoice-new-version-of-myauttoexe-available/article
Just create an autoit account and then post a new topic: Jos check here: then write in that topic your qeustion
can you make a new decomplier for autioit 220.127.116.11
Sorry, bling, the tool isn’t mine – check out http://myauttoexe.angelfire.com/index2.html for the author’s latest version. I don’t know if it’s been updated for 18.104.22.168 yet or not, though :(
Thanks a lot! :)
Indeed. Looks like the site got taken down a month ago or so, not sure what’s going on now. I just attempted to PM the author on a site he moderates, we’ll see what happens.
Okay, the new version is back up and running. No idea what happened exactly, but I missed that it was up again. Check out http://myauttoexe2.tk/ for the official latest version of myauttoexe!
thanks for the update, good to see a useful site.
Hey I am definitely interested in getting this tool but the link is down again. http://myauttoexe2.tk/
Can anyone decompile this. http://www.mediafire.com/?ckahru21r13imd4 It’s a bot, not virus. I try to use myAutToExe Version 2.10 (The latest version), but it’s not efficient
Can anyone tell me why it doesn’t work? Thank you very much. I’m just a newbie on my way to learn autoIT
I’m trying to decompile an exe made with AutoIt version 22.214.171.124 but it doesn’t seem to work. Is there any newer version of the decompiler?
It looks like the latest official version is now at http://board.deioncube.in/showthread.php?tid=29
I don’t know what versions that one supports, but it still seems to be under active development, and cw2k seems very good about figuring things out when people post questions on the forums.
I found this website whilst searching for a program to decompile an old script of mine shortly before I found Exe2Aut. It doesn’t seem to be the one that’s shipped with AutoIt. Maybe worth a try for all those who are looking for an actually working autoit decompiler.
I extracted the download and right away my virus protection notified me of a Trojan.
DO NOT DOWNLOAD THIS
It’s probably long past time I killed this version anyway, since it’s way out-of-date. I can assure you that when I first downloaded it, it didn’t have a virus, so I’ll have to see if something weird is going on. However, if you’re concerned, I believe that package does have source code, which you could compile yourself instead of using the pre-compiled binary.