Exetools  

Go Back   Exetools > General > General Discussion

Notices

 
 
Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #1  
Old 04-12-2017, 23:51
elephant elephant is offline
Friend
 
Join Date: Feb 2005
Posts: 89
Rept. Given: 2
Rept. Rcvd 26 Times in 13 Posts
Thanks Given: 130
Thanks Rcvd at 107 Times in 37 Posts
elephant Reputation: 26
Post How to develop an unpacker - The StarForce case

Very cool presentation, published on the 7th April 2017 by Eloi Vanderbeken at the Sthack security conference in Bordeaux, about unpacking StarForce:

http://www.synacktiv.ninja/ressource..._synacktiv.pdf

This unpacker is based on DLL injection and take care of recovering the OEP, API redirection, stolen bytes, debugger detection and hide from debugger routines.
Reply With Quote
The Following User Says Thank You to elephant For This Useful Post:
besoeso (04-13-2017)
 

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Particular Case of RAR Password Cracking TmC General Discussion 5 03-05-2018 08:00
How can I develop Hook program? tumtum General Discussion 1 02-09-2004 03:08


All times are GMT +8. The time now is 17:24.


Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX, chessgod101
( 1998 - 2024 )