RE tip of the day: Resolving imports in IDA and notice that fo | Malware News
RE tip of the day: Resolving imports in IDA and notice that for ntdll there are no API names? Save the resolved addresses with "Debugger->Take memory snapshot" and manually load ntdll.dll to the same base using pe_dlls.idc: https://buff.ly/34LlfAX #infosec #cybersecurity #malware re_and_more