IsDebuggerPresent
NtQueryInformationProcess获得PEB
NtGlobalFlag
ThreadHideFromDebugger
windows user mode debugging internals;windows native debugging internals; kernel user-mode debugging support
openrce.org
GetForeGroundWindow
IsDebuggerPresent
NtQueryInformationProcess获得PEB
NtGlobalFlag
ThreadHideFromDebugger
windows user mode debugging internals;windows native debugging internals; kernel user-mode debugging support
openrce.org
GetForeGroundWindow