Saturday, August 27 2005 @ 01:37 AM CEST Contributed by: haggar Views: 21829
Level : newbie
====================================== PolyCrypt PE 2.1.4/2.1.5 - manually unpacking tutorial
I heard for this packer at PEiD forum where it's author was bragging about his untedectable packer.
Ofcourse, that is not so true and this packer can be recognized like any other. Crypter is not hard
to unpack, altough it has some tricks. It has standard debug check which you can avoid using HideOlly
or IsDebuggerPresent plugins, and it has file locking what can be frustrating to fix, but lucky for us,
we can bypass this.
Tuesday, August 23 2005 @ 10:41 PM CEST Contributed by: haggar Views: 26783
Level : beginner
Hi and welcome to my new small tutorial about unpacking latest yoda’s protector. This tutorial will not go in the depth of new yoda’s anti-debug tricks, we will work around that field simply because got lost in all that SetThreadPriority, Block input and all that s**t that Ashkbiz Danehkar has thrown inside. Restarting computer every time when you forget to place bp on a
right place is not funny.
Thursday, August 11 2005 @ 05:32 PM CEST Contributed by: haggar Views: 23927
Level : intermediate
PESpin v1.0 , 1.1 & 1.3 - manually unpacking
This is a detailed tutorial about manually unpacking a couple of PESpin versions.(discussing crypted parts, IAT redirection, stolen bytes, ...). Inside archive you'll find tutorial, targets, scripts and some more stuff.