Functions:1.Hide IsDebuggerPresent2.Hide NtGlobalFlag3.Hide ProcessHeapFlag (auto hide)4.Patch ZwQueryInformationProcess (==patch UnhandledExceptionFilter)5.Patch ZwSetInformationThread6.Patch CheckRemoteDebuggerPresent7.Patch OutputDebugStringA8.Anti heap-checking (auto hide)V1.02:! Fixed the bug of patching ZwSetInformationThread (For themida 1.9.5.0)+ ADD heap-checking(auto hide).for winxp.sp2,win2k,win2k3...
[培训]科锐软件逆向54期预科班、正式班开始火爆招生报名啦!!!
