1) XHEO runtime contains (optional) protection against profilers, it checks Cor_Enable_Profiling environment variable. I believe it does not protect against Attach-Load profilers in .NET 4.0 ( hxxp://msdn.microsoft.com/en-us/library/ee471451.aspx )
2) It depends which JIT functions are being hooked by protector. I believe your statement is correct but I don't have much experience with profilers, I don't like that approach to unpacking.
|