Wednesday, May 19, 2010

finally PAIMEI

PAIMEI installed. Great framework!.

















The following code shown my "hello world!" PAIMEI script: given a process id, basically this script detect the creations of new threads and dump the first 5 assembly instructions for each one. In addition are dumped the process registers values during the CreateThread:

















Also, I've found a good resource for learn more about PAIMEI: http://thatsbroken.com