いくつかの戦略...
#1:
There are some APIs for detecting the presence of a debugger:
しかし、明らかな制限があります。デバッガが実行を中断した場合、このチェックは無意味です。これは水密ではありません。
#2:
Attach your own debugger to the processes you care about. That way the user cannot attach their own (a process can only be debugged once simultaneously).
もちろん、ユーザーはデバッガプロセスを強制終了することができます。
または、防止または検出できないカーネルデバッガを使用します。
Which leads to the conclusion: at some level, as long as the user has full access to the system, they can do whatever they want, so be sure to weigh your anti-debugging efforts against the realization that it will take less time for a novice hacker to work around it.