搜索资源列表
48609417855c
- Byshell是一个无进程、无DLL、无启动项的、集多种Rootkit技术特征的独立功能远程控制后门程序(Backdoor)。其利用线程注射DLL到系统进程,解除DLL映射并删除自身文件和启动项,关机时恢复。它是内核级的木马程序,主要部分工作在Ring0,因此有很强的隐蔽性和杀伤力。-Byshell is a no process, no DLL, no startup items, the collection features a variety of Rootkit technology
Dendroid Android rootkit
- Remote Access Toolkit” (RAT) for Android
Nerzhul
- Nerzhul rootkit sours kode
Windows-7-64-bit-process-hidden
- hidecon, utility rootkit for x64 requires patchguard disabled, if not disabled... use patch which you may find on my web site. usage: hidecon -l (display process list) hidecon -le display hidden processes (dbgprint) hidecon -ld
repository.xbmc-he-brasil
- agony rootkit driver what need to be compiled
suterusu-master
- suturesu - linux rootkit
AntiIATHook
- IAT HOOK的检测及修复示例,可用于用户态的rootkit侦测及修复。-show you how to detect and repair the IAT HOOK in user mode.
main
- System Infection VIA UAC Bypass(sysprep) Tested on Windows 7 Ultimate 32 bit to be used with the Sysprep UAC bypass method, it will infect a file with a payload to start up CALC.EXE and LoadLibrary( your ring 3 rootkit )
Root
- This my first rootkit! It can start a process, hide a process, kill a process, list processes, list kernel information on process & much more-This is my first rootkit! It can start a process, hide a process, kill a process, list processes, list k
Subverting.The.Windows.Kernel
- This book covers Windows rootkits, although most of the concepts apply to other operating systems as well, such as LINUX. We focus on kernel rootkits because these are the most difficult to detect. Many public rootkits for Windows are userland rootki
HideProcessHookMDL-master
- Simple rootkit source code
Portable_Executable_32_bit_Structure_in_SVG
- Simple stack of workflow rootkit
AFXRootkit2005
- AFX Windows Rootkit 2005是一个很好的Rootkit工具,它可以完成木马进程、文件、注册表的隐藏,还可实现DLL文件、网络连接及系统服务的隐藏。将程序文件“root.exe”和其它木马程序文件放到TeamViewer所在的文件夹中,在命令行下执行“root.exe /i”命令,TeamViewer文件夹就再也看不到了,同时TeamViewer的进程及其下的所有文件、动态连接库、服务及端口等都将被隐藏起来。-AFX Windows Rootkit 2005 Rootkit i
CCRootkit
- rootkit Demo,可以很好地研究rootkit,是一份比较好的源码-to learn rootkit,it can help you study it more easylier.
source108
- 一个很好的反rootkit例子,终止其运用或替换 重要system dlls.-A good example of anti-rootkit, to terminate the use or replacement of important system dlls.
source108
- 一个很好的反rootkit例子,终止其运用或替换 重要system dlls.-A good example of anti-rootkit, to terminate the use or replacement of important system dlls.
ixer0.11
- 开源版一款手工杀毒Anti-rootkit工具,可为研究rootkit的参考工具或学习windows内核驱动安全编程很好资料。-Open source version of a manual anti-virus Anti-rootkit tools, can be a reference tool for the study of windows or learning rootkit kernel driver security programming good information.
ReloadKernes
- 重载Ring0内核程序可以作为rootkit的学习材料不要用于恶意用途-The overloaded Ring0 kernel can be used as a rootkit learning material not intended for malicious purposes
rkhunter-1.4.2.tar
- Rootkit Hunter, security monitoring and analyzing tool for POSIX compliant systems. Very useful in detecting intrusion and os file changes-Rootkit Hunter, security monitoring and analyzing tool for POSIX compliant systems. Very useful in detecting i
duanor
- Basic rootkit exploiting the eternalromance vuln in windows.