Archive for the 'Reverse-Engineering' Category

Rhys A. Mossom Network Security Services

• October 25, 2014 • Leave a Comment

Yet another tale of the EPROCESS and windows SYSCALLS offsets.

• May 31, 2012 • Leave a Comment

[ General Problem ] EPROCESS-ImageFileName + NtOpenProcessHook

• November 21, 2009 • 2 Comments

[ C ] Entry Point Hook

• January 30, 2009 • 2 Comments

[ C ] NtOpenProcess hook.

• October 4, 2008 • 19 Comments

[C++] WINSOCK send hook.

• July 27, 2008 • 8 Comments

Rootkit Detector: Version 2

• December 25, 2007 • 17 Comments