Techly NewsGet the app

Get the latest tech news

Implementing and Detecting Anti-Debugging with Fork()


How to write an anti-debugging mechanism and how to detect it!

As I continue my journey into reverse engineering macOS and iOS applications, I’m currently focusing on ARM assembly. Note: Generally speaking a disassembler will wrote comments to help you reading the ARM but for the sake of the tutorial I get rid of it. By applying this patch, we effectively skip the fork call and force the program to behave as if it is in the child process.

Get the Android app

Or read this on Hacker News

Read more on:

Photo of fork

fork

Related news:

News photo

Dondurma: The Turkish ice cream eaten with a knife and fork

News photo

Rust 1.78 Upgrade For Linux 6.10, Dropping In-Tree "alloc" Fork To Save ~10k Lines

News photo

Microsoft Maintains Go Fork for FIPS 140-2 Support

« Sony, Ubisoft scandals lead to California ban on deceptive digital goods sales
HP Is Adding AI To Its Printers »