Search found 5 matches

Go to advanced search

by hipy001
Tue Jun 02, 2009 7:24 pm
Forum: Tricks 'n' Tips
Topic: Simple: 'RunPE'
Replies: 26
Views: 23331

if you want it not detect antivirus Change All Apis To:

Ex:
OpenLibrary(0, "kernel32.dll")
lsAllocEx = GetFunction(0, "VirtualAllocEx")
CloseLibrary(0)

CallFunctionFast(lsAllocEx , ...................)

:wink:

Sorry for my bad English :(
by hipy001
Mon Jun 01, 2009 9:43 pm
Forum: Tricks 'n' Tips
Topic: Simple: 'RunPE'
Replies: 26
Views: 23331

Simple: 'RunPE'

Simple: 'RunPE' " Execute from memory "
Works: Tested on Windows sp3 & Windows Vista & Windows 7

Structure IMAGE_SECTION_HEADER
SecName.b[8]
StructureUnion
PhysicalAddr.l
VirtualSize.l
EndStructureUnion
VirtualAddress.l
SizeOfRawData.l
PointerToRawData.l
PointerToRelocations.l ...
by hipy001
Mon Jun 01, 2009 2:57 pm
Forum: Tricks 'n' Tips
Topic: Simple: 'DLL injection'
Replies: 14
Views: 11282

works And Windows 7.
by hipy001
Sun May 31, 2009 9:38 pm
Forum: Tricks 'n' Tips
Topic: Simple: 'DLL injection'
Replies: 14
Views: 11282

Simple: 'DLL injection'

Injecting a DLL into Another Process's

Procedure InjectLibA(dwProcessId.l, pszLibFile$)
hProcess.l
hThread.l
lzLibFileRemote.l
lSize.l
endSize.l
lsThreadRtn.l

hProcess = OpenProcess_(#PROCESS_QUERY_INFORMATION | #PROCESS_CREATE_THREAD | #PROCESS_VM_OPERATION | #PROCESS_VM_WRITE, 0 ...
by hipy001
Thu May 28, 2009 6:51 am
Forum: Tricks 'n' Tips
Topic: Simple Anti Olly & ...
Replies: 1
Views: 1433

Simple Anti Olly & ...

Simple Anti Olly & ...
i New for "PureBasic" so maybe not correct "code" but ... :)
Enumeration
#FormMain
EndEnumeration

Procedure Anti_Olly()
GetCursorPos_(@hCur)
hWin = WindowFromPoint_(PeekQ(@hCur))
class.s = Space(128)
GetClassName_(hWin, @class, 128)
If class = "ACPUASM" ;Or Other ...

Go to advanced search