Tracing exception handlers
Suppose our goal is to dissect a new program. The ultimate method of analysis is single stepping ...
The unispector
How do you spell “I love you” in Greek?… In IDA Pro you can create unicode strings. They are ...
Reading assembly code
Even unobfuscated code is difficult to understand. Look at this function. Can you tell its purpose? ...
The highlighter
Today I’ll present you a pretty small yet useful plugin. If you tried to trace an obfuscated code ...
How to unpack XCP.DAT?
I updated my EFD utility to handle the packed XCP.DAT file. To extract files from the archive, use: ...
Sony DRM
The last week several LGPL violations were found in Sony’s DRM implementation. Here is a proof of ...
The ultimate stealth method
The last described method does not work if the application uses an “unsupported” antidebugging ...
Stealth plugin
The last time I showed you a simple trick with conditional breakpoints. Today I will present you a ...
Simple trick to hide IDA debugger
Quite often IDA users ask for a plugin or feature to hide the debugger from the application. In ...
Connect with the community on
© 2025 Copyright Hex-Rays