Wednesday, May 19, 2010

finally PAIMEI

PAIMEI installed. Great framework!.

The following code shown my "hello world!" PAIMEI script: given a process id, basically this script detect the creations of new threads and dump the first 5 assembly instructions for each one. In addition are dumped the process registers values during the CreateThread:

Also, I've found a good resource for learn more about PAIMEI: