+- الفريق العربي للهندسة العكسية (https://www.at4re.net/f)
+-- قسم : منتديات الهندسة العكسية - Reverse Engineering Forums (https://www.at4re.net/f/forum-4.html)
+--- قسم : البرامج و أدوات الهندسة العكسية - RCE Tools (https://www.at4re.net/f/forum-29.html)
+--- الموضوع : SharpOD x64 (A_AntiDebug Plugin. Support for x64dbg) (/thread-759.html)
SharpOD x64 (A_AntiDebug Plugin. Support for x64dbg) - vosiyons - 09-05-2019
.Now more and more 64-bit system, ollydbg is a very useful debugger, but in 64-bit system, can not find support ollydbg hidden plugin, so I coded Sharpod plugin
.Use with the Strong plugin. Other hidden plugins may cause conflicts, such as: PhantmOm ScyllaHide
Novice recommended configuration
.Use with the Strong plugin. Other hidden plugins may cause conflicts, such as: PhantmOm ScyllaHide
Novice recommended configuration
![[صورة مرفقة: FB1Kkwy.jpg]](https://i.imgur.com/FB1Kkwy.jpg)
![[صورة مرفقة: W3hZGwa.jpg]](https://i.imgur.com/W3hZGwa.jpg)
- Hide Peb64
- Change Caption (random all (window & sub windows & menu) caption)
- Hide Process
- Fake ParentProcess
- Show CrashInfo
- Hook *ZwFunctions (This function mainly reference to Strong Plugin driver source)
- Remove DebugPrivileges
- VMP3.1(above) (VMP3.1 or later uses the syscall privilege command to query ProcessDebugFlags )
- Protect Drx
Driver
- Hook SSDT (invalid)
- Hook ShadowSSDT(invalid)
- restore DebugObject ValidAccessMask
- Bypass ObjectHook(Process&Thread)
I tested the following protection ,working my WIN7 and WIN10 64-bit system
- Safengine NetLicenseor v2.3.9.0
- WinLicense_x32_x64_v2.3.9.0
- Themida_x32_x64_v2.4.6.0
- VMProtect 2.x - 3.1.2
- VProtect Pro 2.1
- Obsidium v1.5.2
- ZProtect v1.6
- Yoda's Protect v1.03
http://s2.dosya.tc/server8/cv9m5a/SharpOD_x64_v0.6b-password_123_.rar.html
RE: SharpOD x64 (A_AntiDebug Plugin. Support for x64dbg) - vosiyons - 02-12-2020
SharpOD v0.6c update log
1. Add processing vmp3.5 anti-debugging
2. Fix ThreadHideFromDebugger parameter handling bug
3. Fix win10 bypass objectcallback (PsProcessType & PsThreadType) to trigger PG BSOD
4. Add processing PEB_ProcessParameters
5. Add handling of ProcessHebugObugObugObug 5 the same situation, open debugging object handle leak problem
6. Fix the hardware breakpoint protection problem of win10 system 7.güncelleme pdk
8. Fix the problem of x64dbg title being detected (Themida 3.x ve Winlicense 3.x)
![[صورة مرفقة: 19nmZG.png]](https://i.hizliresim.com/19nmZG.png)
RE: SharpOD x64 (A_AntiDebug Plugin. Support for x64dbg) - rce3033 - 18-03-2021
الرابط الاولي لا يقبل التحميل!
يعيد تكرار نفسه!
RE: SharpOD x64 (A_AntiDebug Plugin. Support for x64dbg) - FiREWORKS - 18-03-2021
(18-03-2021, 10:55 AM)rce3033 كتب : الرابط الاولي لا يقبل التحميل!
يعيد تكرار نفسه!
http://s2.dosya.tc/server8/cv9m5a/SharpOD_x64_v0.6b-password_123_.rar.html
شكرا اخي على التنبيه...
للأسف الاشكال لا يظهر عندي، التحميل ينجح بدون مشاكل...
RE: SharpOD x64 (A_AntiDebug Plugin. Support for x64dbg) - rce3033 - 18-03-2021
إقتباس :شكرا اخي على التنبيه...
للأسف الاشكال لا يظهر عندي، التحميل ينجح بدون مشاكل...
لم استطع التحميل حتى استخدمت VPN
واعتقد ان ذالك يعود لسبب الحظر!
RE: SharpOD x64 (A_AntiDebug Plugin. Support for x64dbg) - vosiyons - 05-12-2021
[SharpOD v0.6d Stable] update log
1.Add bypass handler for VMP3.5.1anti-debugging
2.Update the driver signature and fix some driver problems
3.Fixed many bugs
![[صورة مرفقة: myqo12o.gif]](https://i.hizliresim.com/myqo12o.gif)
![[صورة مرفقة: mi11ud7.gif]](https://i.hizliresim.com/mi11ud7.gif)
![[صورة مرفقة: gzg6wvl.gif]](https://i.hizliresim.com/gzg6wvl.gif)
RE: SharpOD x64 (A_AntiDebug Plugin. Support for x64dbg) - Cyperior - 05-12-2021
أيمكنك وضع رابط آخر.
RE: SharpOD x64 (A_AntiDebug Plugin. Support for x64dbg) - sitifis - 06-12-2021
رابط إضافي بالمرفقات
RE: SharpOD x64 (A_AntiDebug Plugin. Support for x64dbg) - vosiyons - 25-03-2023
Hi bro re upload please
RE: SharpOD x64 (A_AntiDebug Plugin. Support for x64dbg) - vosiyons - 28-03-2023
SharpOD_x64_v0.6d Stable