Exetools  

Go Back   Exetools > General > Source Code

Notices

Reply
 
Thread Tools Display Modes
  #1  
Old 07-17-2019, 02:41
Lueilwitz Lueilwitz is offline
Friend
 
Join Date: Jul 2019
Location: DNR
Posts: 9
Rept. Given: 0
Rept. Rcvd 0 Times in 0 Posts
Thanks Given: 5
Thanks Rcvd at 13 Times in 5 Posts
Lueilwitz Reputation: 0
ScyllaHide Detector

Code allows you detect ScyllaHide use.

Screen

Github: https://github.com/lurumdare/ScyllaHideDetector
Reply With Quote
The Following 6 Users Say Thank You to Lueilwitz For This Useful Post:
ahmadmansoor (07-17-2019), Gladiyator (07-21-2019), Indigo (07-19-2019), Mahmoudnia (08-04-2019), niculaita (07-17-2019), sh3dow (07-25-2019)
  #2  
Old 08-04-2019, 01:10
Lueilwitz Lueilwitz is offline
Friend
 
Join Date: Jul 2019
Location: DNR
Posts: 9
Rept. Given: 0
Rept. Rcvd 0 Times in 0 Posts
Thanks Given: 5
Thanks Rcvd at 13 Times in 5 Posts
Lueilwitz Reputation: 0
The second version with byte recovery is available on github: https://github.com/lurumdare/ScyllaHideDetector2
Reply With Quote
The Following 3 Users Say Thank You to Lueilwitz For This Useful Post:
h4sh3m (08-04-2019), Mahmoudnia (08-04-2019), Newbie_Cracker (08-07-2019)
  #3  
Old 08-07-2019, 06:32
Newbie_Cracker's Avatar
Newbie_Cracker Newbie_Cracker is offline
VIP
 
Join Date: Jan 2005
Posts: 223
Rept. Given: 75
Rept. Rcvd 26 Times in 12 Posts
Thanks Given: 37
Thanks Rcvd at 19 Times in 15 Posts
Newbie_Cracker Reputation: 26
Could not compile the code; but as I had written a similar code before, It's an easy but effective method of detecting hooks by comparing memory with ntdll.dll mapped from the disk.
__________________
In memory of UnREal RCE...
Reply With Quote
The Following User Says Thank You to Newbie_Cracker For This Useful Post:
Lueilwitz (08-07-2019)
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On


Similar Threads
Thread Thread Starter Forum Replies Last Post
ScyllaHide HookLibraryx86.dll phroyt General Discussion 3 10-25-2019 09:48
ScyllaHide Carbon Community Tools 100 10-19-2018 06:23
The Best Enc / Com DETECTOR How2Crack General Discussion 2 07-26-2002 02:11


All times are GMT +8. The time now is 21:31.


Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX