|
|
|
|
#1
01-22-2005, 23:28
|
|||
|
|||
|
I'm worried about my shitty english.
themida seems that not be *VERY* different from xprot write a dll for helping, which attach the process and dump the image. disasm it and find out the OEP,and I believe it's possbile:P Hook the first extern call in any way, than we have a image which data section is not hurt badly, and...and IAT is a boring work. a superman , dragon, wrote a tools for them, but I don't know if it can still work. is that all? No, SDK IS HADES ON UNPACKING, muhahaha... I'm worried about my shitty english again. 
|
|
#2
01-23-2005, 22:58
|
|||
|
|||
|
In this case I prefer trace and learn from it.
Imho, direct unpacking (if we can call it like that), its always faster / easier. Also since I already started tracing and got me "addicted" to it... Looking forward to see some yado reply 
|
 |
| Thread Tools | |
| Display Modes | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Turbo Attack | UnknwnGaming | Source Code | 2 | 11-20-2022 01:18 |
| known-plaintext attack | eychei | General Discussion | 6 | 04-08-2018 06:03 |
| RC4 Attack | DARKER | General Discussion | 1 | 02-27-2015 02:44 |
| Zip Plaintext Attack Query | Numega Softice | General Discussion | 1 | 03-26-2004 01:30 |
Hybrid Mode
