:::: MENU ::::
Posts tagged with: windows

CheckRemoteDebuggerPresent API


I am currently working on anti-debugging techniques which will also be my project for this year in college.Though i know for a fact  most basic anti-debug techniques are  API based techniques, but i am still doing this post because firstly i did not find any working code and whatever non-working code was present was also implemented locally… By the way I am really impressed by the work compiled by Tyler Shields in 2009 and he has put up some of the best resources out there!

This post is basically about one of those standard API’s > CheckRemoteDebuggerPresent function. Continue Reading

That’s what i learned

Ohkay so there is this software called the metasploit, for hackers its what a wand is for a wizard. The metasploit is a framework, a library of all the exploits and payloads. What happens is basically, that an application may be vulnerable to a certain code..that is for a particular input the application might crash, if that input is converted into a file such that it can attack the application then it is called an exploit. Also there is something that is called as the “PAYLOAD” it is generally the malicious code that is added to the exploit code so that after the exploit has executed the control passes to the payload and a malicious code gets executed, it can act like a trojan and fully compromise your pc or can execute arbitrary shell commands, perhaps it can do pretty much anything you can think of….

Continue Reading