01 2018 档案

权限提升
摘要:UACMe – Defeat Windows User Account Control (UAC) https://github.com/hfiref0x/UACME MiniHook Lib project https://github.com/TsudaKageyu/minhook CrackM 阅读全文
posted @ 2018-01-31 13:53 m4sterx 阅读(181) 评论(0) 推荐(0) 编辑
对抗杀软高级启发(主动防御)技术
摘要:反检测技术之反病毒检测 http://pferrie.host22.com/papers/antidebug.pdf https://paper.seebug.org/222/ https://pentest.blog/art-of-anti-detection-1-introduction-to- 阅读全文
posted @ 2018-01-30 14:29 m4sterx 阅读(761) 评论(0) 推荐(0) 编辑
__readfsdword __readgsqword PEB TEB
摘要:To get 32-bit PEB from 32-bit process: BYTE* _teb = (BYTE*)__readfsdword(0x18); PEB32* _peb = *(PEB32**)(_teb + 0x30); To get 64-bit PEB from 64-bit p 阅读全文
posted @ 2018-01-29 16:16 m4sterx 阅读(1599) 评论(2) 推荐(0) 编辑

点击右上角即可分享
微信分享提示