Wednesday, April 2, 2008

hi

hi
after along time i came here and see ur comments  thank u guys for ur support and suggestions
for any update  u can see the http://reversengineering.wordpress.com

Wink
welcome here and there
see u soon

Posted by REM in 22:11:04 | Permalink | Comments (1) »

Sunday, August 5, 2007

CLOSED HERE RUN THERE

HI
i open the new blog beuz of some reasons so u can go there and stay with us :)
Posted by REM in 18:28:04 | Permalink | Comments (1) »

Wednesday, August 1, 2007

Armadillo 4.xx – Part 2 – (Nanomites)

 hi

another tut:)

 Author :Guan De Dio

Description Elimination of the Nanomites and fix some “anti-debug”.

link:

http://rapidshare.com/files/46356569/index.php_q_aHR0cDovL3d3dy50dXRzNHlvdS5jb20vcmVxdWVzdC5waHA_2FMTgxMw_3D_3D

after download rename to *.rar 

Posted by REM in 17:52:53 | Permalink | Comments (1) »

Sunday, July 29, 2007

McAfee Rootkit Detective v1.1.0.0

McAfee Rootkit Detective 1.0 is a program designed and developed by McAfee Avert Labs to proactively detect and clean rootkits that are running on the system. http://vil.nai.com/vil/stinger/rkdui.gif McAfee Rootkit Detective should only be used by knowledgeable individuals at the direction of, and with the support of, a representative from McAfee Avert Labs or McAfee Technical Support. Improper usage of this tool could result in damage to your applications or operating system. Features Following are the features of this program that are designed to proactively detect and clean rootkits from the system. This program is not dependent on any signatures and can proactively detect most of the existing and upcoming rootkits and allow the user to clean them. Designed to proactively detect the system objects like processes, files and registry that are hidden to the user. Provides information about all running processes in the system. Provides information about various system hooks like SSDT(System Service Descriptor Table) hooks, user/kernel IAT/EAT(Import/Export Address Table) hooks. Allows the user to clean/remove the malicious objects from the system by renaming/deleting the hidden files/registry. Allows the user to terminate the malicious processes. Users can submit samples using the submission feature present in the tool http://download.nai.com/products/mcafee-avert/McafeeRootkitDetective.zip link 4 all ppl in the world: http://rapidshare.com/files/45724533/mac_rootkitrar.rar
Posted by REM in 13:17:06 | Permalink | Comments (1) »

Thursday, July 26, 2007

DLL Export Viewer v1.11

This utility displays the list of all exported functions and their virtual memory addresses for the specified DLL files. You can easily copy the memory address of the desired function, paste it into your debugger, and set a breakpoint for this memoery address. When this function is called, the debugger will stop in the beginning of this function –screen shot: http://www.nirsoft.net/utils/dllexp.gif –webpage: http://www.nirsoft.net/utils/dll_export_viewer.html –link: —-4 win32 http://rapidshare.com/files/45132358/dllexp.zip —-4 x64 http://rapidshare.com/files/45132362/dllexp-x64.zip
Posted by REM in 11:24:28 | Permalink | Comments (1) »

Process Monitor v1.12

Introduction Process Monitor is an advanced monitoring tool for Windows that shows real-time file system, Registry and process/thread activity. It combines the features of two legacy Sysinternals utilities, Filemon and Regmon, and adds an extensive list of enhancements including rich and non-destructive filtering, comprehensive event properties such session IDs and user names, reliable process information, full thread stacks with integrated symbol support for each operation, simultaneous logging to a file, and much more. Its uniquely powerful features will make Process Monitor a core utility in your system troubleshooting and malware hunting toolkit. Process Monitor runs on Windows 2000 SP4 with Update Rollup 1, Windows XP SP2, Windows Server 2003 SP1, and Windows Vista as well as x64 versions of Windows XP, Windows Server 2003 SP1 and Windows Vista link: http://rapidshare.com/files/45131759/ProcessMonitor.zip
Posted by REM in 11:19:29 | Permalink | Comments (1) »

news of links :)

the best link or … top 5: 1- 17. Insights and practice in basic (self)keygenning (1125 times downloaded) 2- 37. Indept Unpacking & Anti-Anti-Debugging A Combination Packer/Protector (996 times downloaded) 3- 07. Intermediate level patching, Kanal in PEiD (216) 4- 08. Debugging with W32Dasm, RVA, VA and offset, using LordPE as a hexeditor (207) 5- all_sig_4_ida_3y_REM (202)
Posted by REM in 11:09:04 | Permalink | Comments (1) »

undetecteding a worm or…

hi http://rapidshare.com/files/43783036/vid2.avi.1 http://rapidshare.com/files/43782943/vid2.avi.2 ——for joining the parts use: http://rapidshare.com/files/44765472/Create_vid2.exe ——-size : a little huge :(
Posted by REM in 11:01:21 | Permalink | Comments (1) »

basic coding a serial fisher

hi good tutor : http://rapidshare.com/files/44730075/snd-basic.coding.a.serial.fisher.rar
Posted by REM in 10:38:27 | Permalink | Comments (1) »

ADS remover for y! messenger 8.1.0.413

hi a little patch i created for yahoo messenger 8.1.0.413 for removing ads ,multi yahoo… only for test :) http://rapidshare.com/files/44072637/yahoo_.messenger.8_1_0_413-patchF.rar
Posted by REM in 10:32:25 | Permalink | Comments (1) »