[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[exelist] Re: Time to detect ProcDump...

To: exelist@...
Subject: [exelist] Re: Time to detect ProcDump...
From: lorian@...
Date: Fri, 23 Apr 1999 11:35:32 +0200 (MEST)
Delivered-to: listsaver-of-exelist@egroups.com
Delivered-to: listsaver-egroups-exelist@egroups.com
Mailing-list: contact exelist-owner@egroups.com
Reply-to: exelist@egroups.com

morning folks,

i think you missed the fact, that procdump already has tons of hiding
+anti anti debugging in it...
eliczs detection is based on SEH and it is a well known fact, that
Procdump doesnt handle SEH correctly, there is only a workaround in it ;)
There are a lot of ways to detect, the simple+lame ones will be kicked at
the end....

bye lorian

-= HOW MANY LAMERS HAVE YOU KILLED TODAY? =-


---
Sent through Global Message Exchange - http://www.gmx.net


------------------------------------------------------------------------
eGroup home: http://www.eGroups.com/group/exelist
Free Web-based e-mail groups by eGroups.com

Prev by Date: [exelist] Re: Time to detect ProcDump...
Next by Date: [exelist] Re: Time to detect ProcDump...
Previous by thread: [exelist] Re: Time to detect ProcDump...
Next by thread: [exelist] Re: Time to detect ProcDump...
Index(es):
- Date
- Thread