Forum: General Forum
04-28-2006, 02:48 PM
|
|
Replies: 9
Views: 16,020
wait, you should be able to free it with...
wait, you should be able to free it with FreeLibrary, but the problem is that the system needs it because it is a shell extension. You should first delete the CLSID value from the registry key, then...
|
|
Forum: General Forum
04-27-2006, 01:32 PM
|
|
Replies: 9
Views: 16,020
good nice icesword, i often use it and i didnt...
good nice icesword, i often use it and i didnt know it cann free dlls :P
However why you cant use FreeLibrary to free the dll? If it has been loaded normally then Freelibrary must work, you just need...
|
|
Forum: General Forum
04-24-2006, 04:51 PM
|
|
Replies: 9
Views: 16,020
Don't know if there is a tool to free dlls in...
Don't know if there is a tool to free dlls in other processes, however if you want to do it yourself you can try to inject a thread in the target process, and this thread will have to make a call...
|
|
Forum: File Unpacking
02-10-2006, 03:56 PM
|
|
Replies: 1
Views: 14,247
|
|
Forum: Reverse Code Engineering
01-22-2006, 11:23 AM
|
|
Replies: 3
Views: 11,066
|
|
Forum: Reverse Code Engineering
01-13-2006, 03:43 PM
|
|
Replies: 1
Views: 9,241
as far as i know starforce is really strong and...
as far as i know starforce is really strong and there are some games still uncracked, but i dont know which games, also i did not have the chance to reverse starforce hehe. However they talked a lot...
|
|
Forum: Reverse Code Engineering
01-13-2006, 03:41 PM
|
|
Replies: 2
Views: 8,241
programs may make normal access violations, for...
programs may make normal access violations, for example if they use a pointer to access memory regions they could set up a tray-catch block to see if the pointer is valid or not. With your debugger...
|
|
Forum: General Forum
01-13-2006, 03:36 PM
|
|
Replies: 6
Views: 19,864
|
|
Forum: Reverse Code Engineering
09-17-2005, 05:42 AM
|
|
Replies: 0
Views: 9,656
|
|
Forum: File Unpacking
08-23-2005, 11:43 AM
|
|
Replies: 1
Views: 18,239
I am reversing armadillo 4.20, as you correctly...
I am reversing armadillo 4.20, as you correctly say detaching the father is not really useful, unless you have a loader that can emulate armadillo debugging loop. The 0xCC you find in the child are...
|
|
Forum: Reverse Code Engineering
06-11-2005, 07:46 AM
|
|
Replies: 2
Views: 8,881
|
|
Forum: Reverse Code Engineering
06-06-2005, 08:13 AM
|
|
Replies: 15
Views: 21,256
yes it could be an explanation
hehe i don't...
yes it could be an explanation
hehe i don't think so, since the boot code works really well :)
well you could use fat32, it's very easy :) However reading ntfs is not difficult, the hard...
|
|
Forum: Reverse Code Engineering
06-05-2005, 09:30 AM
|
|
Replies: 2
Views: 9,562
|
|
Forum: Reverse Code Engineering
06-05-2005, 09:29 AM
|
|
Replies: 15
Views: 21,256
maybe you can find the ebook :P
which os are...
maybe you can find the ebook :P
which os are you looking at? My code is different, thats why i couldnt understand your problem. That is, in your code i see what you say, my code (nt4) instead looks...
|
|
Forum: Reverse Code Engineering
06-04-2005, 07:18 AM
|
|
Replies: 15
Views: 21,256
|
|
Forum: Reverse Code Engineering
05-10-2005, 10:54 AM
|
|
Replies: 1
Views: 10,553
if you use Ida, it will resolve parameters for...
if you use Ida, it will resolve parameters for you :)
you can see which parameters are passed simply by looking the code in the procedure.
That is, in the disassembly you see various references to...
|
|
Forum: Reverse Code Engineering
04-21-2005, 07:28 AM
|
|
Replies: 2
Views: 10,198
|
|
Forum: Reverse Code Engineering
04-17-2005, 07:24 AM
|
|
Replies: 2
Views: 8,662
>and the core sub ,i think this is for...
>and the core sub ,i think this is for decryption but dont understand what it's realy do
i add some comments
.yP:004602E7 pusha ; push all registers
.yP:004602E8 ...
|
|
Forum: Reverse Code Engineering
03-23-2005, 07:13 AM
|
|
Replies: 0
Views: 8,188
|
|
Forum: File Unpacking
02-10-2005, 12:33 PM
|
|
Replies: 1
Views: 17,854
|
|
Forum: Reverse Code Engineering
01-27-2005, 06:32 AM
|
|
Replies: 1
Views: 9,593
IDA vulnerability
http://www.idefense.com/application/poi/di...vulnerabilities (http://www.idefense.com/application/poi/display?id=189&type=vulnerabilities)
hope they fix it soon :)
Bye!
AndreaGeddon
|
|
Forum: Reverse Code Engineering
05-06-2004, 08:20 AM
|
|
Replies: 2
Views: 10,683
|
|
Forum: File Unpacking
04-11-2004, 02:51 PM
|
|
Replies: 4
Views: 19,983
xprotector is really a hard challenge! What...
xprotector is really a hard challenge! What version is applied to the programs you posted? The last version is really hard to dump, a friend of mines told me that via driver it hooks normal ipc...
|
|
Forum: Steganography + Cryptography
03-08-2004, 10:28 AM
|
|
Replies: 1
Views: 25,465
Steganalisys programs
I am working on steganograpfy for a project for the university, so i am searching some programs that make you analyze entities like file entropy, mutual information etc etc. Do you know some good...
|
|
Forum: General Forum
12-25-2003, 11:01 AM
|
|
Replies: 7
Views: 18,322
|
