Skip to content

Latest commit

 

History

History
32 lines (27 loc) · 707 Bytes

README.md

File metadata and controls

32 lines (27 loc) · 707 Bytes
Raw

Anti Debug Collection

This repository contains a collection of anti-debugging tricks that I have collected in C#.

Methods

Flags

  • IsDebuggerPresent
  • IsRemoteDebugPresent
  • ProcessDebugPortFlag
  • ProcessDebugObjectHandleFlag

Manual Flags

  • PEB
  • NtGlobalFlag

Misc

  • ParentProcess
  • RaiseException
  • HideThreadsFromDebugger
  • Timer

Hooks

  • HeavenGate (detect ScyllaHide)
  • IsBadHookNumberObject (detect ScyllaHide)

Syscall

  • NtQueryInformationProcess (detect ScyllaHide)

Object Handles

  • CloseHandle

Reference and Credits