Exetools
Page 2 of 2 1 2
Show 40 post(s) from this thread on one page

Exetools (https://forum.exetools.com/index.php)
-   General Discussion (https://forum.exetools.com/forumdisplay.php?f=2)
-   -   SVKP, Armadillo or SDProtector (https://forum.exetools.com/showthread.php?t=5971)

Line79 12-10-2004 22:19
SDProtector isn't hard.

It has a funny way to jmp to entry point, which i call a kind of domino..

The anti debugging isn't really hard to bypass. The threads used to detect
Debuggers, dumpers , and IAT recoverer are easy to disable because of a bad vulnerability in the implementation.

The IAT redirection is simple as shit. you just need to write a simple Imprec plugin and its gone.. Beside, i have noticed that it will sometimes change his
redirection, i don't even bother to re write the plugin.. i just close the app, and try again :)

The only fun part is the jmp to oep, which i have already seen in some custom protection.

to me : Armadillo
SDProtector
SVKP

Bye.


All times are GMT +8. The time now is 11:52.
Page 2 of 2 1 2
Show 40 post(s) from this thread on one page

Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2026, vBulletin Solutions, Inc.
Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX