Just a simple question. In regards of hiding my hack from Warden's signature scanning, I have two options. Should I: A) Change the results of VirtualQuery if it is in my module's range or B ) encrypt the offset of my module that VirtualQuery is requesting information for.
I find it better to not touch anything Warden is using so (B ) would be better? But I've already coded (A) and kinda lazy to go back B). Which is best in your opinion though?
I find it better to not touch anything Warden is using so (B ) would be better? But I've already coded (A) and kinda lazy to go back B). Which is best in your opinion though?