Learning: Shelling of abnormal method to find OEP - Code World

Learning: Shelling of abnormal method to find OEP

Others 2019-12-25 20:11:11 views: null

A practiced hand unpackme bitarts

1, loaded directly OD, where one kind of shelling recording method, F9 to run the program, view the log window, found many anomalies

2. It should be noted that at Red Label, which is the last exception, in fact, this can also be directly in the memory window in the code segment (or use a process of elimination) under the direct memory breakpoint, then F9 to run, wait for the program the code segment (or other) to be accessed / written off the next time we are using here is the shark constant teacher abnormal method to learn ....

3 and then OD of the off-tone options, and then manually run manually ignore abnormal, to address a int3 most of 0046E88F above figures are marked, to a position

4, and the memory window of the program code segment to set memory breakpoints, then repeatedly F8, because the last exception is our next breakpoint, it is also not far from the OEP, and then continue to F9, went as follows, analysis of the code from the module, OEP find success

Summary: In fact, the second point in himself when it comes to the direct memory breakpoint at the beginning of the memory window, but the teacher said that if the constant shark encounter anti-debugging, then probably not, so this is another idea of it

Guess you like

Origin www.cnblogs.com/zpchcbd/p/12098498.html

Learning: Shelling of abnormal method to find OEP

Shelling-> The principle of analog tracking shelling method

Abnormal record of learning java

Machine vision Halcon quick debugging method - abnormal judgment, abnormal display, abnormal monitoring, abnormal acquisition method

Partial shelling and shelling

Python abnormal learning 9--

[Question] TemplateInputException is abnormal, can't find the reason?

FE of ML: Based on the Boston house price data set, use the LightGBM algorithm to predict the model and then use the 3σ principle method (calculate the standard deviation of the residual) to find outliers/abnormal samples in the test set

Application of vba on the Find method (Find method) (1)

[VBA] Application of the Find Method (Find Method) (2)

Scala language study notes - method, function and abnormal

After manjaro upgrade _sogou abnormal input method

[Fat Tiger's Reverse Road] 03——Android generation shell shelling method list & practical operation

Shelling Preamble

Reverse shelling

The method of Example xorm -Find

Can not find UseInMemoryDatabase method

Case: Find (including method)

Find elements by binary method

Find where a method was called

String [find] method

Learning ximo shelling video: 2. Take off the ASPACK shell by hand

learning method

c ++ custom array the more abnormal ArrayIndexOutOfBoundsException (learning)

Internal and abnormal classes of Java program development and learning

Java learning Day18-abnormal (on)

Java learning Day19-abnormal (below)

Some abnormal sharing in the process of learning Redis

On abnormal

【abnormal】

Recommended

Ranking

ElasticSearch-- data modeling best practices

Permission Maintenance - Shadow User Backdoor

Refactor the code using MVP mode

Quantitative investment-fundamental model-PVC multi-factor model

Spark Big Data Processing Lecture Notes 3.2 Mastering RDD Operators

Blazor page components (2)

Erlernen von Kenntnissen zur Android-Entwicklung – Kodierung, Verschlüsselung, Hash, Serialisierung und Zeichensätze

About Qi high in JAVA study notes SORM summary detailed personal explanation

Will you calculate the accuracy of the rope displacement sensor in the measurement?

OPENJTAG debugging learning (3): debugging using the gdb command line

Daily

More

2024-05-01(4)

2024-04-30(36)

2024-04-29(5)

2024-04-28(12)

2024-04-27(29)

2024-04-26(22)

2024-04-25(32)

2024-04-24(30)

2024-04-23(30)

2024-04-22(5)