Jump to content
View in the app

A better way to browse. Learn more.

Tuts 4 You

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Featured Replies

Posted

not so much for protecting, I made it just to prove the point that protection can be done in many different ways :/

the goal is to make a script

Detemida_np.rar

Edited by Nooby

won't run on my pc (sudden reboot each time started!!!) :dunno:

Runs fine on Vista32.

The question is what is considered an unpack.. make it do the imports normally or just a decrypted code section.. :)

I mean you could make an imports table and resolve all API calls but that isn't really necessary it seems.

Very nice one though, you got me somewhat confused at some point. :)

Regards,

q.

Small script;

LCLR
esto //EP or systembreakpoint
GMI eip, MODULEBASE
log $RESULT, "Modulebase: "
mov base, $RESULT
mov base1, $RESULT
add base, 3c
add base, [base]
sub base, 3c
add base, 100
add base1, 1000
log base1, "Code Section: "bpwm base1, [base]
esto
bpmc
mov write, eip
add write, 14
bp write
esto
bc eip
bprm base1, [base]
esto
DPE "dump.exe", eip
msg "Program dumped and unpacked. Check dump.exe"
ret

Edited by quosego

  • Author

anything to do with stolen codes?

The question is what is considered an unpack.. make it do the imports normally or just a decrypted code section.. :)

I mean you could make an imports table and resolve all API calls but that isn't really necessary it seems.

Very nice one though, you got me somewhat confused at some point. :)

Regards,

q.

Well the API pointers are still wrong, even though as you say, code section is decrypted.

You can't remove the Nooby section until thats fixed. So i'd declare it unpacked once its removed.

Create an account or sign in to comment

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.