Using tools like IDA and Olly crackers break software and create patches and keygens. This causes a loss of millions of dollars to these companies. Thus developers have started employing anti-debugger techniques to ensure that the programs they create cannot be reverse engineered and borken into. In this video, Gimmeamilk
will show a demo of how to circumvent this protection.
The CopyTrans application contains code to prevent a debugger such as OllyDbg from being attached to the CopyTrans.exe process. In this video we look at the technique used and demonstrate a way of circumventing this protection. The (very good) documentation on the internals of debugging processes in Windows can be downloaded from: http://www.alex-ionescu.com/dbgk-1.pdf
Tags: basics ,
Latest from the SecurityTube Blog:
Disclaimer: We are a infosec video aggregator and this video is linked from an external website. The original author may be different from the user re-posting/linking it here. Please do not assume the authors to be same without verifying.