mcnorth
09-13-2005, 01:49 AM
I'm using the Hide Debugger plugin and set it to protect against TerminateProcess. Still, it terminates. Is there another way to protect against this?
Thanks.
Thanks.
View Full Version : Hide Debugger fails to provide protection against Terminate Process
Ricardo Narvaja
09-13-2005, 06:05 AM
the terminate process protection donĀ“t work in XP sp2, only sp1.
Ricardo
Ricardo
Asterix
09-13-2005, 10:13 AM
I'll correct it in the future version
1bitshort
09-13-2005, 12:12 PM
hmm, there are lots of ways to terminate processes under windows:
http://www.diamondcs.com.au/freeutilities/apt-techniques.php
http://www.diamondcs.com.au/freeutilities/apt-techniques.php
mcnorth
09-13-2005, 08:24 PM
Ricardo: Good to know. thanks for sharing it.
Asterix: I'll be looking for it. Do you have the future version in the works?
1bitshort: Thanks for the link. So if I identify which method is being used should I be able to patch to prevent it?
Asterix: I'll be looking for it. Do you have the future version in the works?
1bitshort: Thanks for the link. So if I identify which method is being used should I be able to patch to prevent it?
1bitshort
09-14-2005, 01:33 AM
yep. usually it's just TerminateProcess, but not always... might even be just sending window messages like WM_CLOSE/SC_CLOSE
dm47
09-23-2005, 03:41 PM
can some1 post a link for hide debugger?
none of them ever work
none of them ever work
vBulletin® v3.7.4, Copyright ©2000-2008, Jelsoft Enterprises Ltd.