Welcome, Guest.

Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - pr0jekt

Pages: 1
1
Reversing / Re: Extract address of CALL instruction
« on: May 26, 2018, 07:13:58 pm »
Thanks.

2
Reversing / Get imports of an image
« on: May 26, 2018, 06:32:51 pm »
This is useful for many functions, reverse engineering, manual mapping, etc.

Code: [Select]
typedef std::vector<IMAGE_IMPORT_DESCRIPTOR*> vecImports;

vecImports get_imports(void* _image)
{
vecImports imports;
auto import_desc = this->getDataDir<IMAGE_IMPORT_DESCRIPTOR*>(IMAGE_DIRECTORY_ENTRY_IMPORT, _image);

for (;
import_desc->FirstThunk;
++import_desc)
imports.emplace_back(import_desc); // emplace_back faster than push_back

return imports;
}

3
Reversing / 4 Line PE-Header Eraser
« on: May 26, 2018, 06:24:15 pm »
Code: [Select]
ULONG old = NULL;
char *BaseAddr = (char*)GetModuleHandleA(NULL);
auto base = reinterpret_cast<uintptr_t>(LI_FIND(LoadLibraryA)("Kernel32.dll"));
LI_GET(base, VirtualProtect)(BaseAddr , 4096, PAGE_READWRITE, &old);
RtlSecureZeroMemory(BaseAddr , 4096);

LI_FIND/LI_GET are Lazy Importer functions.

4
they mostly use smod/glua scripts to detect for changed values, perfect bhops, patched functions etc, etc.

5
Public Discussion / Re: Worst Hack Menus Ever
« on: May 26, 2018, 06:07:23 pm »

Pages: 1

Total Registered Members:





2022 BigPackets. All rights reserved. All other trademarks, logos and copyrights are the property of their respective owners. This site is not associated with any company in any way.