搜索资源列表
hide_pro
- 隐藏进程,可以在windows下进程隐藏,利用ssdt hook来达到隐藏的-Hidden process, the process can be hidden under the windows, use ssdt hook to reach the hidden
inject
- 一套进程注入类,直接继承CInjectHookMsg,修改一些参数就可远程注入hookapi,CShowTextInjectHookMsg是一个实例类-A set of classes into the process, the direct successor Inject Hook Msg, modify some of the parameters can be remote injection hookapi, CShowTextInjectHookMsg is an instance
73563465345
- 纯VB全局 Hook 测试,进程防火墙,拦截进程-Pure VB global Hook test, process of firewall, interception process
NP_Source
- NP启动后通过WriteProcessMemory跟CreateRemoteThread向所有进程注入代码(除了系统进程smss.exe),代码通过np自己的LoadLibrary向目标进程加载npggNT.des。npggNT.des一旦加载就马上开始干“坏事”,挂钩(HOOK)系统关键函数如OpenProcess,ReadProcessMemory,WriteProcessMemory,PostMessage等等。 挂钩方法是通过改写系统函数头,在函数开始JMP到npggNT.des中的
win32
- win32 sdk 键盘钩子 读取进程-Win32 SDK keyboard hook. The reading process...
APIHook
- 哈弗曼加密程序 哈弗曼加密程序--Plug workshops injection routine, stratified injection hook into comic injected input method injection network inject threads into the new process injection, inject memory DLL for the novice to improve
HookDemo_SSDT
- SSDT hook 内核api,实现进程隐藏和进程保护功能的源码,备份资料,仅供参考。-SSDT hook kernel api, hidden process and process protection function of the source, the backup data is for reference only.
Hook_CreatPrecess
- 易语言Hook CreatPreces函数的经典源码例子,用来阻止创建一个新的进程和它的主线程!-Hook CreatPreces easy language source code examples of the classic function is used to prevent the creation of a new process and its primary thread!
HideProcess
- Ring3 Hook ZwQuerySystemInformation实现隐藏进程,在XP里测试通过。-Ring3 Hook ZwQuerySystemInformation Hide Process made by Chai.
VEHHook
- windows高级hook进程异常钩子源代码-Senior abnormal process windows hook hook source code
1
- 系统用到Graphic、进程操作、屏幕截图截图、键盘钩子、注册表等,适合新人学习Winform程序之用。-System uses Graphic, process operations, screenshots screenshots, keyboard hook, registry, etc., suitable for newcomers to learn Winform procedures.
dijihook
- windows系统下的编程,消息message的传递是贯穿其始终的。这个消息我们可以简单理解为一个有特定意义的整数,正如我们看过的老故事片中的“长江长江,我是黄河”一个含义。windows中定义的消息给初学者的印象似乎是“不计其数”的,常见的一部分消息在winuser.h头文件中定义。hook与消息有着非常密切的联系,它的中文含义是“钩子”,这样理解起来我们不难得出“hook是消息处理中的一个环节,用于监控消息在系统中的传递,并在这些消息到达最终的消息处理过程前,处 理某些特定的消息”。这也是h
HOOKSSDTPROCESS
- HOOK SSDT进程保护用户层的无法关闭 -HOOK SSDT process layer to protect the user can not close
ShawSsdtHook
- ShadowSsdtHook,类似于ssdt hook,不过寻找shadowssdt表方法不一样。而且要列出地址需要附加一个图形进程。-ShadowSsdtHook, SSDT is similar to hook, but for shadowssdt method is not the same. And to list the addresses the need for an additional graphics process.
KeyboardHook
- 原理:通过SetWindowsHookEx函数将DLL注入到进程的地址空间中,线程dwThreadId获取到的键盘消息会实现被钩子拦截-Principle: The SetWindowsHookEx function DLL is injected into the process s address space, the thread dwThreadId get to the keyboard hook to intercept messages will be achieved
processprotect
- 通过inline Hook为公开函数实现进程防杀-Achieved through the process of killing anti-public functions as inline Hook
nohookbaohujincheng
- 无hook 无驱动 非双进程保护 实现进程保护-No hook without driving the process to achieve the protection of non-dual-process protection. .
task
- vb编写的加强版任务管理器,与上一个版本相比,用了更底层的API代替openprocess来获取句柄,并且使用dll进行hook openprocess,在xp/win7下不被任务管理器杀死,增加了判断进程在应用层是否拒绝访问的功能,并且对界面进行了优化,仿win8的界面(虽然有点不像),将按钮改为弹出式菜单。-vb prepared an enhanced version of Task Manager, compared with the previous version, with a l
paintplugin
- hook process then capture image and attach COleDispatchDriver of CMSFlexGrid get cell text declare them and use void _declspec (dllimport) InstallHook (void) . void _declspec (dllimport) UnInstallHook (void) build in vs2005-hook process then capture
zywb
- 这是一个基于易语言这样一个最简单的开发平台的编写的五笔输入法程序,主要是方便大家了解输入法的过程和实现的原理。同时基于外挂hook模式开发,未来会改进并基于ime模式。1.2.lpk是支持库文件,主要实现了按键拦截和模拟,调试程序前请先安装。基于这个输入法框架进行开发,可以实现大部分输入法的设计要求。避免了vc和windows复杂的消息机制及ime机制的学习成本,使业余爱好者专注于编码的实现,大部分人可以在一周熟练使用易语言开发程序。代码写的比较简陋,内置码表从极点五笔导出,实现了生僻字的输入,