m.alvar.es
m.alvar.es
[Anti-Analysis] Watching Memory Regions using GetWriteWatch API
Protecting Code and Uncovering Debuggers by Watching Memory
Marcos Alvares
1 min read
[Anti-Analysis] Abusing CloseHandle API
Marcos Alvares
1 min read
[Anti-Analysis] Unhandled Exception Filters
Marcos Alvares
1 min read
[Cheatsheet] Userland WinDbg
Marcos Alvares
1 min read
[Tool] Messing Around with Gepetto
Marcos Alvares
9 min read
[Tool] Quick Snip to Detect ntdll.dll
Marcos Alvares
1 min read
Load more
![[Anti-Analysis] Watching Memory Regions using GetWriteWatch API](https://cdn.hashnode.com/res/hashnode/image/upload/v1769440973805/1d380909-fc52-4962-9cd4-e7f84430dba0.jpeg?w=1600&h=840&fit=crop&crop=entropy&auto=compress,format&format=webp)
![[Anti-Analysis] Abusing CloseHandle API](https://cdn.hashnode.com/res/hashnode/image/upload/v1768758873628/38a5f7c4-f30e-403c-9e63-730536dbd91a.jpeg?w=1600&h=840&fit=crop&crop=entropy&auto=compress,format&format=webp)
![[Anti-Analysis] Unhandled Exception Filters](https://cdn.hashnode.com/res/hashnode/image/upload/v1767116241392/cf80fe63-eec7-4442-afa6-4ea7f3c937c1.jpeg?w=1600&h=840&fit=crop&crop=entropy&auto=compress,format&format=webp)
![[Cheatsheet] Userland WinDbg](https://cdn.hashnode.com/res/hashnode/image/upload/v1768170826430/ea918a0e-302f-4cd5-a61f-c72fd7e00af2.jpeg?w=1600&h=840&fit=crop&crop=entropy&auto=compress,format&format=webp)
![[Tool] Messing Around with Gepetto](https://cdn.hashnode.com/res/hashnode/image/upload/v1767142238902/4dd6591e-4631-4ad3-9204-d567d5a06435.jpeg?w=1600&h=840&fit=crop&crop=entropy&auto=compress,format&format=webp)
![[Tool] Quick Snip to Detect ntdll.dll](https://cdn.hashnode.com/res/hashnode/image/upload/v1767128393992/4d706808-86ae-40d2-b1fc-cabbcdf0fccb.jpeg?w=1600&h=840&fit=crop&crop=entropy&auto=compress,format&format=webp)