Exetools  

Go Back   Exetools > General > General Discussion

Notices

Reply
 
Thread Tools Display Modes
  #1  
Old 07-20-2017, 02:55
abhi93696 abhi93696 is offline
Friend
 
Join Date: Mar 2017
Location: India
Posts: 73
Rept. Given: 0
Rept. Rcvd 8 Times in 2 Posts
Thanks Given: 146
Thanks Rcvd at 159 Times in 64 Posts
abhi93696 Reputation: 10
Smile Anti-Anti_debugging WinDbg Scripts

Hi

Here are some WinDbg's Anti-Anti-debugging scripts. These scripts work with WinDbg (not local) Kernel Debugging.

1)Anti-rdtsc-trick script

2)Script for renaming running process
3)Script for renaming kernel objects


Their complete explanation can be read here-:

Cheerz
Reply With Quote
The Following 2 Users Say Thank You to abhi93696 For This Useful Post:
Hypnz (07-20-2017), niculaita (07-20-2017)
  #2  
Old 07-20-2017, 09:34
TechLord TechLord is offline
Banned User
 
Join Date: Mar 2005
Location: 10 Steps Ahead of You
Posts: 761
Rept. Given: 384
Rept. Rcvd 247 Times in 112 Posts
Thanks Given: 789
Thanks Rcvd at 2,021 Times in 570 Posts
TechLord Reputation: 200-299 TechLord Reputation: 200-299 TechLord Reputation: 200-299
The explanations for setting up kernel debugging before the above scripts can be used, can be found here :

VirtualKD – Installation

Starting with Windows Kernel Exploitation – part 1 – setting up the lab

Setting Up Kernel-Mode Debugging of a Virtual Machine Manually

As noted above, these are useful only if you are into KERNEL DEBUGGING , not for user-mode debugging
Reply With Quote
The Following 2 Users Say Thank You to TechLord For This Useful Post:
chants (07-20-2017), nimaarek (09-20-2017)
Reply

Tags
script, windbg

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Beginners Guide to Basic Linux Anti Anti Debugging Techniques taos General Discussion 10 07-09-2005 05:55


All times are GMT +8. The time now is 17:03.


Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX, chessgod101
( 1998 - 2024 )