- Visual Basic importing win32api functions
- Is it possible to intercept the ReadFile() function of an executable
- The Zen of JIT Debugging
- Which encryption ?
- eEye - Generic Anti-Exploitation Technology for Windows
- Virtual Machine Debugger (Live Admiral thread alone!)
- Problem resolving KERNEL32 imports
- .NET Format: Ntoskrnl vs Pietrek
- Overridable Usermode Debugger?
- MSDOS 7 and 48 BIT LBA
- Symbols for kernel addresses
- Fibers?
- Protected kernel driver
- LINK: Toby Opferman's Driver Development Tutorials
- patching a sys driver
- New antidebug trick
- Reversing a home cooked encryption routine
- loading resource process
- WinXP .rsrc encryption
- FlexLM --> variable job-structure at startup
- Very nice Portable Executable (PE) tutorial
- Brainstorming
- file & section alignment (PE)
- Looking for exported function. The way?
- API hook/programing question?
- Debugging hooks
- IDA Plugin AppWizard (Visual C++ 6.0)
- Algorithmic difficulties
- how do i display/dump process memory on remote pc?
- FLEXNet
- Ever heard of Windows Protection Plus??
- CRC32b
- LINK: API Hooking: a new and fast technique
- SafeDisc API V.2
- about flexlm6.1 lic
- FlexLM 9.2 Crypt Filter --> Getting XOR Table ?
- W9x - locking a full screen dos box
- Protection against spoofing DLL's
- About Flexlm Sign,help
- Not typical question: can we tweak IE image rendering engine?
- [ARTeam] Loading DLL from Memory
- HASP DMP to Emulator_NOT B-studio & cool INFO By ME )
- Flexlm 7.2 LIC file use on Flexlm 9.2 display error -73 ?
- How to write spaghetti code
- *.sys FIleS
- Get IDT address in multiprocessors
- Excel Word File Password Decrypt
- CrackZ explanation of hiding dongle response codes
- Code - *ock
- The error of different vendor ID generator same code
- 16-bit enveloped app.
- converting pic to raw for dib
- playing a mod music file
- [ARTEAM] Creating The Invisible Oraculum by Gabri3l
- HASP4 (TimeHasp) Cracking..
- File Compare
- RECON 2005
- About bad flags of flexlm with CRO open
- OpenRCE
- Fun with prefetch and movsb
- [ARTEAM] Cracking with Loaders in 3 tutorials..
- Reverse Engineering C++ DLL
- Fast Eye Hardlock
- anti-ildasm
- Import mechanisms tutorial
- RDPMC & RDTSC problem
- switching a running program from ring3 to ring0 in WinXP
- how can i obtain a ring3 thread context in ring0
- Guide to creating a Softice Kernel Debugger Extension (KDExtension)
- How to manipulate the IOBitmap in TSS??
- Win Debug API's
- Question about Windows GDT
- writing own plugins/tools
- BGL (babylon glossary) to GLS (babylon glossary source).
- what the hell with windows installer
- How to force data into a specific PE section?
- OSIX Articles: Avoiding Debuggers; Self Modifying Code - Defeating the Disassembler
- JavaCard internal structure (JCOP, CyberFlex, etc.)
- Hardlock HL-CODE
- article on ring0 exploits
- phys @ EE200000h..
- HASP HL
- An unusual driver based Time-trial protection
- Please help...SentinelLM question
- Looking for some help with softice and installshield methods
- Article: Defeating Microsoft Windows XP SP2 Heap protection and DEP bypass
- Multiple same hardware issue in programming
- NEW: Syser Kernel Debugger by wuyanfeng
- The Infamous "VB4 PCODE & sx32w.dll"
- XP using not only ring0/ring3?
- little state of art in decompilation
- DRIVER_OBJECT structures list
- VB reversing
- Reverse engineering a firmware
- Old DOS Stack handling by Win2k
- Hack-a-Bike
- finding documents about CPU cache locking ( for Intel P4)
- protection CD's
- Security Accounts Manager
- Ring 0 -> Ring 3 : Upward calls and downward returns theoretically possible?
- Different paths in different Computers
- Windows undocumented native API, interesting article updated
- Specification of NE executables
- Setting up IDA for analysing Softice functions
- how to build the lmgrypt.exe with the flexlm SDK v8.1?
- multithread application debugging
- Flexlm with CRO...need pointers (Crackz?)
- How to use the genlic32.exe(version 9.2) to generate license?
- Physical to virtual address translation
- Changes in policy related to patching kernel for MS Windows Server 2003 SP1
- Articles: .NET (dotnet) cracking
- Further observations in Flexlm...
- Virtual Drive
- SoftIce Breakpoint Table Structure
- What is the Flags field in the output of a SoftICE Query command?
- FlexLM 7.2d, CRO, SEED, VENDOR n LICENSE
- article on classes restoration by example of Delphi
- iButton
- syncrosoft dongle
- Marx CryptoBox infos
- EXECryptor
- Resources
- Can't set a working Hardware breakpoint
- how to use adb to get the seed on unix?
- Globetrotter Parallel Dongle Clone
- DeviceIOControl and mouse drivers
- interrupt handler problem
- NtQuerySystemInformation and open handles
- Kernel Filter Driver Example & Article
- Ring3 debugger detection stuph (was Please test a program)
- i'm gone lost my mind ...(Kaspersky)
- I want to write a generic static disassemler
- DR7.GD bit and DRX access exception problem
- New memory protection in XP SP2, details and problems
- nice (and new) article about NT-Syscalls
- Nice site for driver development
- help linux shared linked library
- unknown TEB fields
- PEB of another process?
- How to anti crash code in swf files
- Back to INT2E, trash SYSCALL:)
- Adding functionality to RASAPI32.DLL
- code for call processing application
- WIN32 DEBUG API(AGAIN)
- Sentinel sproQuery Again :(
- WIN32 Debug API
- WinXP 10-Client Server Limit
- Need programming tips to achieve this effect
- Can't see WIN32K with SoftIce?
- .NET RCE Info: Salamander obfuscator Anti-ILDASM
- flexlm 8.1a feature problem
- Message Tracking
- Link: Kernel Services in User Space on Win2K
- Dongle Access Codes Problem
- Debugging Kernel Drivers
- Method to Detect Virtual PC
- Reverse engineering poker protocols?
- Change control properties in VC++
- FlexLM v9 clarifications needed...
- Problem to emulate SproQuery
- SoftIce Symbol Retriever - Getting PDB Files aka Symbols
- What is the best EXE-protector?
- VxD and PageNotPresent
- How to make a kernel debugger ?
- Win2003 Server Activation
- hardlock emulation
- IsDebuggerPresent - how to bypass WITHOUT changing the mem
- Need to track 99% resource usage by cracked prog... ring 0
- IDA argument list - c++ program
- Preserving Undocumented Kernel Information - KeServiceDescriptorTableShadow
- how to do this ?
- Need Help with "access violation...."
- Hasp 3 dos exe envelope
- Kernel reverse engineering tool
- Writing Windows NT Device Drivers
- vwin32 and win32 service table
- java third party components debugging
- question about debuggin an app and preventing registry access..
- Low-level Keyboard Hook
- Harddisk serial number & reversing
- A stranger dongle. help me please
- flex + hareware key???
- Original application and hardlock (for the last time...)
- WiseInstaller help?!
- LINK: Toby Opferman's Debug Tutorials
- Discovery reversing the kernel memory
- CreateRemoteThread and VB apps!
- Process Environment Block
- Seed Code for Hasp 4
- Trap, interrupt & all that stuff
- How to disassemble Startup code of Binary
- Advanced address context question!
- Interesting technical article about the Windows loader
- Hardlock cloning
- MSI mystery...
- SSP license check?
- SoftIce - Breaking on phisical sector access
- Getting hardware infos about the local computer
- LINK: Process-wide API spying-an ultimate hack
- CBJ - Call for papers and participation
- Tages defeated
- Bypassing Debug Registers Protection
- Retrieving System, Process and Thread information using ZwQuerySystemInformation
- ImpREC.dll problem
- idioms
- Sentinel SuperPro Password Overwrite
- debug registers & SI
- Nokia 6600 Symbian: help disassembling
- FlexLM 7.2i
- Clipper 5.3 with Exospace V 2.11
- Using SoftICE - Details of some useful commands
- InstallShield inx files again
- FlexLM 7.2a - wierd license format
- Programming Journal Articles by Rheingold
- FlexLM7.2 -invalid pointer to the job structure
- Trap exceptions 0E in NTVDM.exe without being a debugger
- Sentinel Super Pro (16-bit)
- Hardware-based read-only memory
- SDK for C-dilla SafeCast.
- FlexLm Vendor Deamon Cracking
- Change setting in application from external app.
- Unusual tests for DRx registers
- Adding new PE sections
- Rainbow Sentinel Protocol confusion?
- ida plugins
- Delayed import table?
- RVA to file offset in C++??
- anyone have any information on User32InitializeImmEntryTable export from user32.dll ?
- Programs In Xp With Ntvdm.exe
- Art Of Disassembly
- "Writing Your Own Packer"
- Some info about USB
- Bad address references in a dumped encrypted dll
- Question of BigInteger ...
- sproQuery emulation
- problem extract resources from exe created by meta card?
- IDC Help
- Generating DBG files for COM DLL/OCX's.
- Signature Scanning & Packers
- Windows NT IDA scripts
- Log any DRX Access - srcs now available
- heuristic scanning
- Undocumented NT Kernel Technique and Header files Collection
- OpenSCManager Controller PseudoTool (+ KMD Programming Example Package)
- Fetch text from RichEdit control
- problem with firmware on dsl route
- [Question] About C-Dilla SafeCast. Help!
- Function as References
- Debugging RPCRT & OpenSC Manager
- Official PE specification, download here
