Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/yellowbyte/analysis-of-anti-analysis
writings on anti-reverse engineering.
https://github.com/yellowbyte/analysis-of-anti-analysis
anti-reversing reverse-engineering
Last synced: 3 months ago
JSON representation
writings on anti-reverse engineering.
- Host: GitHub
- URL: https://github.com/yellowbyte/analysis-of-anti-analysis
- Owner: yellowbyte
- Created: 2018-02-21T02:49:03.000Z (over 6 years ago)
- Default Branch: develop
- Last Pushed: 2021-11-13T01:39:23.000Z (almost 3 years ago)
- Last Synced: 2024-04-06T21:39:01.900Z (7 months ago)
- Topics: anti-reversing, reverse-engineering
- Homepage:
- Size: 3.01 MB
- Stars: 262
- Watchers: 24
- Forks: 35
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
- awesome-security-collection - **186**星 - reverse engineering (<a id="8c5a692b5d26527ef346687e047c5c21"></a>收集)
README
#
Analysis of Anti-Analysis
### [The Return of Disassembly Desynchronization](research/the_return_of_disassembly_desynchronization/the_return_of_disassembly_desynchronization.md)
> Although the recent version of IDA now has a fix for disassembly desynchronization, the fix inadvertently makes another anti-disassembly technique more stealthy and can also be used to hide instructions. Find out more in this post!
### [Hiding Call To Ptrace](research/hiding_call_to_ptrace/hiding_call_to_ptrace.md)
> The goal of this post is to make ptrace a practical solution for anti-debugging. The problem with ptrace as an anti-debugging measure is that it is too easy to __identify__ and __bypass__. Let's see if we can change that.