OpenRCE

📚 OpenRCE is preserved as a read-only archive. Launched at RECon Montreal in 2005. Registration and posting are disabled.

About Articles Book Store Distributed RCE Downloads Event Calendar Forums Live Discussion Reference Library RSS Feeds Search Users What's New

Customize Theme

Flag: Tornado! Hurricane!

Created: Tuesday, January 29 2013 01:46.16 CST

Direct Link, View / Make / Edit Comments

Wow64-Specific Anti-Debug Trick

Author:

waleedassar

# Views: 18539

http://waleedassar.blogspot.com/2013/01/wow64-specific-anti-debug-trick.html

Created: Sunday, January 27 2013 02:59.16 CST

Direct Link, View / Make / Edit Comments

Injecting 64-Bit DLL Into 32-Bit Process

Author:

waleedassar

# Views: 18337

http://waleedassar.blogspot.com/2013/01/wow64logdll.html

Created: Sunday, December 9 2012 04:28.18 CST

Direct Link, View / Make / Edit Comments

Windows Internals: SkipThreadAttach

Author:

waleedassar

# Views: 19028

http://www.waleedassar.blogspot.com/2012/12/skipthreadattach.html

Created: Saturday, November 24 2012 19:54.12 CST

Direct Link, View / Make / Edit Comments

SuppressDebugMsg As Anti-Debug Trick

Author:

waleedassar

# Views: 20428

My latest blog post where i explain a new anti-debug trick.

http://waleedassar.blogspot.com/2012/11/suppressdebugmsg-as-anti-debug-trick.html

Have fun

Created: Friday, November 23 2012 20:35.07 CST

Direct Link, View / Make / Edit Comments

Hiding Threads From Debuggers

Author:

waleedassar

# Views: 18976

My lastest blog post where i discuss in detail the topic of hiding threads from debuggers.

http://waleedassar.blogspot.com/2012/11/hidding-threads-from-debuggers.html

Have fun.

Archived Entries for waleedassar

Subject	# Views	Created On
OllyDbg RaiseException Bug	7962	Monday, November 12 2012
Defeating Memory Breakpoints	8203	Monday, November 12 2012
SizeOfStackReserve As Anti-Attaching Trick	7221	Monday, November 5 2012
Virtual PC Detection Tricks	8470	Monday, October 29 2012
PAGE_EXECUTE_WRITECOPY As Anti-Debug Trick	7923	Friday, September 28 2012
Anti-Dumping - Part 3	8683	Saturday, September 8 2012
PE Header Major/MinorSubsystemVersion	8966	Sunday, August 5 2012
Native x86 User-mode System Calls Hooking	9763	Friday, July 27 2012
CreateRemoteThread vs. RtlCreateUserThread	10478	Saturday, June 30 2012
IDA Pro And CodeView Debug Info Bug	8061	Tuesday, June 26 2012
IDA Pro Bug	7900	Wednesday, June 20 2012
OllyDbg NumberOfSections Crash	7719	Friday, April 20 2012
GetModuleFileNameEx And Infinite Loops	4186	Saturday, March 31 2012
OllyDbg v1.10 And Wow64	6921	Saturday, March 31 2012
OllyDbg Resource Table Parsing Integer Overflow	3558	Thursday, March 29 2012
Anti-Dumping	3351	Saturday, March 24 2012
OllyDbg Section Name Crash	2518	Wednesday, March 21 2012
Visual Basic Malware - Part 1	2378	Wednesday, March 14 2012
OllyDbg v2.01 And TLS Callbacks	9505	Wednesday, March 7 2012
Collection Of OllyDbg Bugs And Exploits	1553	Friday, March 2 2012
OllyDbg Fake ImageName Bug	1929	Tuesday, February 21 2012
OllyDbg v1.10 And Hardware Breakpoints	30250	Monday, February 6 2012
Yet Another Anti-Debug Trick	12142	Tuesday, January 31 2012
An OllyDbg Bug Disables Software Breakpoints	8763	Friday, January 13 2012
Another OllyDbg Anti-Debug Trick	3127	Sunday, January 1 2012
A new Anti-Olly trick.	9005	Tuesday, December 27 2011
ICanAttach, a plugin to bypass anti-attaching tricks.	16356	Tuesday, December 13 2011
TLSCatch, An OllyDbg Plugin To Catch TLS Callbacks Easily	8435	Saturday, October 30 2010
svchost from A to zinc part5	4456	Wednesday, September 8 2010
svchost from A to zinc part4	5306	Monday, September 6 2010
svchost from A to Zinc part3	4831	Saturday, September 4 2010
svchost from A to Zinc part2	3979	Saturday, September 4 2010
svchost from A to Zinc	3139	Friday, September 3 2010
PE import tables scanner	4729	Friday, September 3 2010

There are 31,328 total registered users.

Recently Created Topics
[help] Unpacking VMP...	Mar/12
Reverse Engineering ...	Jul/06
let 'IDAPython' impo...	Sep/24
set 'IDAPython' as t...	Sep/24
GuessType return une...	Sep/20
About retrieving the...	Sep/07
How to find specific...	Aug/15
How to get data depe...	Jul/07
Identify RVA data in...	May/06
Question about memor...	Dec/12

Recent Forum Posts
Finding the procedur...	rolEYder
Question about debbu...	rolEYder
Identify RVA data in...	sohlow
let 'IDAPython' impo...	sohlow
How to find specific...	hackgreti
Problem with ollydbg	sh3dow
How can I write olly...	sh3dow
New LoadMAP plugin v...	mefisto...
Intel pin in loaded ...	djnemo
OOP_RE tool available?	Bl4ckm4n

Recent Blog Entries
	halsten	Mar/14
Breaking IonCUBE VM
	oleavr	Oct/24
Anatomy of a code tracer
	hasherezade	Sep/24
IAT Patcher - new tool for ...
	oleavr	Aug/27
CryptoShark: code tracer ba...
	oleavr	Jun/25
Build a debugger in 5 minutes
More ...

Recent Blog Comments
	nieo on:	Mar/22
IAT Patcher - new tool for ...
	djnemo on:	Nov/17
Kernel debugger vs user mod...
	acel on:	Nov/14
Kernel debugger vs user mod...
	pedram on:	Dec/21
frida.github.io: scriptable...
	capadleman on:	Jun/19
Using NtCreateThreadEx for ...
More ...

Imagery

SoySauce Blueprint
Jun 6, 2008

[+] expand

View Gallery (11) / Submit