Location:
Search - pe debugger
Search list
Description: PE Monitor是一个小调试器和反汇编器,用来设置断点在指定的API上。这样,可以通过PE Monitor来监控我们需要的PE程序的运行时信息。-PE Monitor is a small anti-debugger and assembler, used to set breakpoints in the specified API. In this way, through PE Monitor to monitor the procedures we need PE s run-time information.
Platform: |
Size: 99328 |
Author: 张华 |
Hits:
Description: 漫谈TLS_CallBack:原理、编程、手工感染及检测.利用TLS_CallBack(线程局部存储回调函数)玩弄调试器以及感染PE文件.-Talk TLS_CallBack: principles, programming, manual infection and detection. Use TLS_CallBack (thread local storage callback function), as well as playing with the debugger PE file infection.
Platform: |
Size: 854016 |
Author: yuying |
Hits:
Description: PE文件监视调试器,有反汇编引擎的代码,可以学习一下-PE file monitoring debugger, a disassembler engine code, you can learn about
Platform: |
Size: 99328 |
Author: 范文一 |
Hits:
Description: 一个简单的调试器
主要功能 :1.单步步入 2.单步步过 3.运行 4.自动步过 5.指令记录 6.自动步入 7.跳出函数体 8.dump被调试进程 9.INT3断点 10.硬件断点 11.多内存断点 12.API断点 13.对DLL导出函数的反汇编 14.导入函数名的解析 15.内嵌了一个PE查看工具默认显示被调试程序的PE信息.可以选择查看其他的程序PE信息.
所有的功能都可以使用命令和菜单 快捷键来完成,可以拖拽
-A simple debugger interface simple cottage Windbg. Main features: 1. Single step into the 2 single-step through 3 run 4 automatically step through 5 command record 6 automatically into 7 out of a function body 8.dump debugging process 9.INT3 breakpoint 10. hardware breakpoints 11 and more memory breakpoint 12.API breakpoint 13. DLL export functions for disassembly 14 import function name resolution 15. built a PE View the default display tool program being debugged PE information. can choose to view information about other programs PE all the functions you can use keyboard shortcuts and menu commands to complete, you can drag and drop. code issues in the hope of useful to you Oh. See specific use Help menu
Platform: |
Size: 661504 |
Author: 曹林开 |
Hits:
Description: VT Debugger with Open Source
这个是拿BluePill的代码作为Base,硬改成调试器。
构思到代码成型花掉我一年时间,幸亏公司活少,给了我充足的时间。
这个是摘自本人的简历内容。
XP系统的汇编级双机调试器,同时可以调试内核线程和普通线程。
Bypass 业界全部的AntiDebug系统。
Builtin with below Functions.
1. AMD VT System,
2. Internal MMU System,
3. PE Loader,
4. Kernel Socket,
5. BTS Tracer.
6. Bp without CC(int 3) code.
7. PE level Script.
8. PDB support
9. Process Memory Scan
Platform: |
Size: 1258496 |
Author: ljh |
Hits:
Description: 自己写的基于windows调试框架的R3调试器,包含全部源码。实现了软件断点,硬件断点,单步步入 ,步过,还有一个PE文件格式的解析类。实现了添加区段,扩展区段大小等功能。 此源码是笔者早期学习时所写,简单易懂适合初学调试器或者逆向破解爱好者学习。-Write their own windows debugger based on the framework of the R3 debugger, including all the source code. Achieve software breakpoints, hardware breakpoints, single step, step by step, there is a PE file format parsing class. The function of adding section, expanding section size and so on. This source code is written in the early learning, easy to understand for beginners debugger or reverse hacking enthusiasts to learn.
Platform: |
Size: 110592 |
Author: ZhaoXin |
Hits: