浅谈脱壳中的Dump技术1

whypro

作者：Lenus Margin
摘要：
本文首先指出了DUMP技术的原理，并尝试着编写一个实现于LordPE的基本功能的dump，并针对dump的编写一层一层的突出了dump过程中所注意的事项，对其加以不断的完善；讨论了一般的anti-dump的原理和解决的办法，用实践说明在脱壳中dump的技巧。最后比较了几种常用的dump工具的优劣。
关键词：
    Dump,PEB,Anti-dump,OEP
Abstract:
This paper first point out the principle of the dump skills, and try to write a program to achieve the fundamental function which the LordPE’s dump can do. And pointing to the attention of the writing, I improve my dump program on and on. I try to discuss the normal principle of anti-dump and the way to solve it. Using the example to explain the dump skill in the process of unpacking. Finally , I compare some of usual dump tools.

Keywords:
Dump, PEB,Anti-dump,OEP