IDA_AntiDebugSeeker-v1.3

Code correction for the error in IDA 9.0

import ida_ida

start_addr = ida_ida.inf_get_max_ea()
end_addr = ida_ida.inf_get_min_ea()

IDA_AntiDebugSeeker-v1.2

Rule UPDATE

AntiDebugTechnique
[VM_Check]
[VBox_Check]
[VMware_Check]
[NtSetInformationThread]
[NtQueryInformationProcess]
[Anti-Sandbox_SandBoxie]
[Anti-Sandbox_Buster_Sandbox_Analyzer]

IDA_AntiDebugSeeker-v1.1

• Detected Function List

Version 1.1 includes an added functionality to show the Detected Function List along with the Anti Debug Detection Results,
which can be activated using the Ctrl + Shift + D shortcut.

• Features
  • Search results
  • Jump to section by double-clicking
  • Display rule explanations on mouse-over
  • Investigate Call functions recursively by clicking on the function name
    • Displayed functions that are detected will appear in grey.
    • Hovering the mouse over these functions will display the detection results.

• Rule Update

  Anti_Debug_API
  [CommandLine check]
  GetCommandLineA
  GetCommandLineW

  [Analysis Environment Check]
  GetExitCodeProcess

  Anti_Debug_Technique
  [VMware_I/O_port]
  [VMware_magic_value]
  [CreateMutex_AlreadyExist]
  [CreateEvent_AlreadyExist]
  [ChildProcess_Check]
  [Extract_Resource_Section]
  [Commucate_function_String]
  [Commucate_function]

IDA_AntiDebugSeeker-v1.0

Add files via upload