ProcessDebugObjectHandleis used to query debug object handle if there is no attached debugger function write 0 to passed buffer and return status STATUS_PORT_NOT_SET (0xC0000353). HyperHideDrv will always return STATUS_PORT_NOT_SET ProcessDebugFlagsis used to query process flag NoDebugInherit....
x64x86-64python-scriptidax86x64dbgollydbgmemorydumpinglabelessreversingx64dbg-pluginheap-spraybroken-pe-headersdecryption-automation UpdatedJan 28, 2025 C++ stonedreamforest/Mirage Star435 Code Issues Pull requests kernel-mode Anti-Anti-Debug plugin. based on intel vt-x && ept technology ...
# For brevity only new code is showndefbypass_anti_debug(client:X64DbgClient):client.hide_debugger_peb()# Bypass basic anti-debugging technique# Bypass FindWindowW anti-debugging technique# Wait for user32 to be loadedaddr,_=client.eval_sync('LoadLibraryExW')client.set_breakpoint(addr,singles...
HyperHide is open-source hypervisor based Anti-Anti-Debug plugin for x64dbg/x32dbg. HyperHide uses Intel ept to hook various syscalls and also other functions which can be used to spot the presence of debugger. Compilation In order to compile project you need WDK and Visual Studio 2019 Suppo...
xdbg by brock7: Open-source user-mode Anti-Anti-Debug plugin for x64dbg & cheatengine. [Download] X-Pause by torusrxxx: Guaranteed to pause the debuggee. [Download] ExtraInfo by torusrxxx: Show extra information in the info box. x64_tracer by KurapicaBS: Conditional branch logger for ...
反调试插件DebugPrivilege 可编辑eip寄存器的插件 虚拟转物理地址插件 追踪可疑调用堆栈的插件 aadp4olly反调试插件 BlkLabel批量打书签插件 OD内存防护插件用法 AdvancedOlly使用视频 Ollydbg插件Anti-Anti v0.11 Ollydbg反调试插件VMSweeper ollydbg附加进程插件AttachTo和使用视频 ...
Bypassing Anti-Debug Putting it all Together 04 Mar 2025, bydarbonzo,comments Fun with self-decryption 25 Feb 2018, byViRb3,comments The big handle gamble A shot in the dark Pushing our luck Winner winner chicken dinner! 04 Nov 2017, bymrexodia,comments ...
反调试插件DebugPrivilege 可编辑eip寄存器的插件 虚拟转物理地址插件 追踪可疑调用堆栈的插件 aadp4olly反调试插件 BlkLabel批量打书签插件 OD内存防护插件用法 AdvancedOlly使用视频 Ollydbg插件Anti-Anti v0.11 Ollydbg反调试插件VMSweeper ollydbg附加进程插件AttachTo和使用视频 ...
xLCBbyThunderCls: Plugin that mimics the function of the original LCB plugin for OllyDbg by scherzo. xdbgbybrock7: Open-source user-mode Anti-Anti-Debug plugin for x64dbg & cheatengine. [Download]X-Pausebytorusrxxx: Guaranteed to pause the debuggee. ...
Anti-debug checks First, some weird anti-debug behaviors : the payload compares the running processes with this list : ollydbg.exe idag.exe idag64.exe idaw.exe idaw64.exe scylla.exe scylla_x64.exe scylla_x86.exe protection_id.exe ...