逆向资源-盼盼资源网-亲测资源网-盼盼的家园www.panpan.org

 找回密码
 立即注册
查看: 157|回复: 0

[普通] X64dbg断点设置插件SlothBP-by snzyj

[复制链接]

1936

主题

2015

帖子

40万

积分

管理员

Rank: 9Rank: 9Rank: 9

积分
406874
发表于 2020-1-23 22:18:08 | 显示全部楼层 |阅读模式

X64dbg断点设置插件SlothBP-by snzyj


  1. [Process Creation]
  2. CreateProcessA="kernel32.CreateProcessA"
  3. NtCreateProcess="ntdll.NtCreateProcess"
  4. ShellExecute="shell32.ShellExecute"
  5. ShellExecuteEx="shell32.ShellExecuteEx"

  6. [Memory]
  7. VirtualAlloc="kernel32:VirtualAlloc"
  8. VirtualFree="kernel32:VirtualFree"
  9. HeapAlloc="kernel32:HeapAlloc"
  10. HeapFree="kernel32:HeapFree"
  11. GlobalAlloc="kernel32:GlobalAlloc"
  12. GlobalFree="kernel32:GlobalFree"
  13. WriteProcessMemory="kernel32:WriteProcessMemory"
  14. ReadProcessMemory="kernel32:ReadProcessMemory"
  15. RtlDecompressBuffer="ntdll.RtlDecompressBuffer"

  16. [Code Injection]
  17. SetWindowsHookEx="user32:SetWindowsHookEx"
  18. CreateRemoteThread="kernel32:CreateRemoteThread"
  19. VirtualAllocEx="kernel32:VirtualAllocEx"
  20. QueueUserAPC="kernel32.QueueUserAPC"

  21. [Networking]
  22. UrlDownloadToFile="urlmon.UrlDownloadToFile"

  23. [Crypt]
  24. CryptGenKey="advapi32.CryptGenKey"
  25. CryptDecrypt="advapi32.CryptDecrypt"
  26. CryptAcquireContext="advapi32.CryptAcquireContext"

  27. [Resource]
  28. LoadResource="kernel32.LoadResource"
  29. FindResource="kernel32.FindResource"

  30. [Process Creation]
  31. CreateProcessA="kernel32."CreateProcessA"
  32. NtCreateProcess="ntdll.NtCreateProcess"
  33. ShellExecute="shell32.ShellExecute"
  34. ShellExecuteEx="shell32.ShellExecuteEx"

  35. [Dialog box]
  36. DestroyWindow="user32.DestroyWindow"
  37. DialogBoxParamA="user32.DialogBoxParamA"
  38. EndDialog="user32.EndDialog"
  39. SendMessageA="user32.SendMessageA"
  40. MessageBoxA="user32.MessageBoxA"
  41. MessageBoxW="user32.MessageBoxW"
  42. MessageBoxExA="user32.MessageBoxExA"
  43. MessageBoxExW="user32.MessageBoxExW"
  44. DialogBox ="user32.DialogBox"
  45. DialogBoxIndirect="user32.DialogBoxIndirect"
  46. CreateDialogIndirect="user32.CreateDialogIndirect"
  47. MessageBoxIndirectA="user32.MessageBoxIndirectA"
  48. MessageBoxIndirectW="user32.MessageBoxIndirectW"
  49. CreateWindow="user32.CreateWindow"
  50. CreateWindowExA="user32.CreateWindowExA"
  51. CreateWindowExW="user32.CreateWindowExW"
  52. ShowWindow="user32.ShowWindow"
  53. UpdateWindow="user32.UpdateWindow"
  54. GetWindowTextA="user32.GetWindowTextA"
  55. GetWindowTextW="user32.GetWindowTextW"
  56. GetDlgItemTextA="user32.GetDlgItemTextA"
  57. GetDlgItemTextW="user32.GetDlgItemTextW"
  58. GetDlgItemInt="user32.GetDlgItemInt"
  59. [limit]
  60. EnableWindow="user32.EnableWindow"
  61. EnableMenuItem="user32.EnableMenuItem"
  62. [File processing]
  63. CreateFileA="kernel32.CreateFileA"
  64. CreateFileW="kernel32.CreateFileW"
  65. OpenFile="kernel32.OpenFile"
  66. ReadFile="kernel32.ReadFile"
  67. WriteFile="kernel32.WriteFile"
  68. GetFileSize="kernel32.GetFileSize"
  69. lcreat="kernel32.lcreat"
  70. lopen ="kernel32.lopen"
  71. lread="kernel32.lread"
  72. lwrite="kernel32.lwrite"
  73. hread="kernel32.hread"
  74. hwrite="kernel32.hwrite"
  75. OpenFileMappingA="kernel32.OpenFileMappingA"
  76. OpenFileMappingW="kernel32.OpenFileMappingW"
  77. OpenMutexA="kernel32.OpenMutexA"
  78. OpenMutexW="kernel32.OpenMutexW"
  79. LoadLibraryA="kernel32.LoadLibraryA"
  80. LoadLibraryExA="kernel32.LoadLibraryExA"
  81. LoadLibraryW="kernel32.LoadLibraryW"
  82. LoadLibraryExW="kernel32.LoadLibraryExW"
  83. CreateFileMappingA="kernel32.CreateFileMappingA"
  84. CopyFileA="kernel32.CopyFileA"
  85. CopyFileW="kernel32.CopyFileW"
  86. CopyFileExA="kernel32.CopyFileExA"
  87. GetPrivateProfileStringA="kernel32.GetPrivateProfileStringA"
  88. CopyFileExW="kernel32.CopyFileExW"
  89. SetFilePointer="kernel32.SetFilePointer"
  90. MoveFileA="kernel32.MoveFileA"
  91. MoveFileW="kernel32.MoveFileW"
  92. MoveFileExA="kernel32.MoveFileExA"
  93. MoveFileExW="kernel32.MoveFileExW"
  94. DeleteFileA="kernel32.DeleteFileA"
  95. DeleteFileW="kernel32.DeleteFileW"
  96. LoadCursorFromFileA="user32.LoadCursorFromFileA"
  97. rtcFileLen="user32.rtcFileLen"
  98. [Pangolin]
  99. GetModuleHandleA="kernel32.GetModuleHandleA"
  100. OpenMutexA="kernel32.OpenMutexA"
  101. GetSystemTime="kernel32.GetSystemTime"
  102. VirtualProtect="kernel32.VirtualProtect"
  103. CreateFileMappingA="kernel32.CreateFileMappingA"
  104. CreateThread="kernel32.CreateThread"
  105. [Self validation]
  106. rtcFileLen="kernel32.rtcFileLen"
  107. FindFirstFileA="kernel32.FindFirstFileA"
  108. ExitProcess="kernel32.ExitProcess"
  109. GetStartupInfoA="kernel32.GetStartupInfoA"
  110. GetFileSize="kernel32.GetFileSize"
  111. [Process function]
  112. CreateToolhelp32Snapshot="kernel32.CreateToolhelp32Snapshot"
  113. Process32First="kernel32.Process32First"
  114. Process32Next="kernel32.Process32Next"
  115. Process32FirstW="kernel32.Process32FirstW"
  116. Module32First="kernel32.Module32First"
  117. Module32Next="kernel32.Module32Next"
  118. Module32FirstW="kernel32.Module32FirstW"
  119. Module32NextW="kernel32.Module32NextW"
  120. Toolhelp32ReadProcessMemory="kernel32.Toolhelp32ReadProcessMemory"
  121. Heap32ListFirst="kernel32.Heap32ListFirst"
  122. Heap32ListNext="kernel32.Heap32ListNext"
  123. Heap32First="kernel32.Heap32First"
  124. Heap32Next="kernel32.Heap32Next"
  125. OpenProcess="kernel32.OpenProcess"
  126. TerminateProcess="kernel32.TerminateProcess"
  127. ExitProcess="kernel32.ExitProcess"
  128. ExitThread="kernel32.ExitThread"
  129. PostQuitMessage="kernel32.PostQuitMessage"
  130. IsDebuggerPresent="kernel32.IsDebuggerPresent"
  131. ZwQueryInformationProcess="ntdll.ZwQueryInformationProcess"
  132. WriteProcessMemory="kernel32.WriteProcessMemory"
  133. CreateThread="kernel32.CreateThread"
  134. CreateRemoteThread="kernel32.CreateRemoteThread"
  135. CreateProcessA="kernel32.CreateProcessA"
  136. [Disk processing]
  137. GetDiskFreeSpaceA="kernel32.GetDiskFreeSpaceA"
  138. GetDriveTypeA="kernel32.GetDriveTypeA"
  139. [send]
  140. sendto="ws2_32.sendto"
  141. WSASend="ws2_32.WSASend"
  142. recv="ws2_32.recv"
  143. send="ws2_32.send"
  144. WSARecv="ws2_32.WSARecv"
  145. recvfrom="ws2_32.recvfrom"
  146. WSARecvFrom="ws2_32.WSARecvFrom"
  147. WSASendTo="ws2_32.WSASendTo"
复制代码


下载地址:
https://545c.com/file/4000752-419219218



本帖子中包含更多资源

您需要 登录 才可以下载或查看,没有帐号?立即注册

x
回复

使用道具 举报

您需要登录后才可以回帖 登录 | 立即注册

本版积分规则

QQ|民间故事|新华字典|周公解梦|实用工具|加密解密|便民服务|盼盼工具箱|闹钟|默笙工具箱|易经风水|Archiver|手机版|小黑屋|逆向资源-盼盼资源网