Blog Archive
2013
Tags
API import, Assembly Language, blog, exception handling, export table, Linux, low level development, Low level programming, obfuscation, sigaction, signal, software protection, structured exception handling, system programming, vectored exception handling, windows internals
System Programming Blog
2023-02-07 09:31:00
This blog is dedicated to low level programming in Assembler and C/C++ (although, C++ is unwelcome) in either *Nix or Windows based operating systems.
Showing 2 posts for tag 'dump'
Exception Driven 'Debugging': Getting Behind the Anti Debugging Tricks
October 22, 2012
However, the purpose of this article is not to discuss pros and cons of Themida or any other protector, nor do I have any intention to disgrace any of the software vendors. The purpose is to describe a relatively easy way of bypassing common anti debugging tricks (including Windows DRM protection) with DLL injection.
Tags: analysis, anti piracy, C, code injection, CreateRemoteThread, dll injection, dump, enumerate threads, exception handling
Defeating Packers for Static Analysis of Malicious Code
March 2, 2012
I doubt whether there is anybody in either AV industry or among reverse engineers who does not know what a software packer is. Malware research and reverse engineering forums are full of packers' related questions, descriptions thereof, unpacking suggestions and links to both packers and unpackers. In short - people have been doing a lot of precious work on defeating packers and protectors.
Tags: advanced programming technique, code injection, dump, enumerate threads, information, memory dump, packers, programming, protectors, reverse, suspend thread, windows internals

This site uses cookie files for our mutual comfort.

OK

BitMazing.tech
Services
Projects
About
Contact

Services
Reverse engineering
Software development
Database programming

Publications
Mastering Assembly Programming
Practical Assembly Programming
Copyright © 2023 Alexey Lyashko