Analysis of Anti-Analysis

The Return of Disassembly Desynchronization

Although the recent version of IDA now has a fix for disassembly desynchronization, the fix inadvertently makes another anti-disassembly technique more stealthy and can also be used to hide instructions. Find out more in this post!

Hiding Call To Ptrace

The goal of this post is to make ptrace a practical solution for anti-debugging. The problem with ptrace as an anti-debugging measure is that it is too easy to identify and bypass. Let's see if we can change that.