搜索资源列表
BIOSRootkitjiancejishudeyanjiu
- BIOS Rootkit 及其检测技术的研究 重庆大学硕士学位论文-BIOS Rootkit detection technology and its research Chongqing University Master' s degree thesis
rkhunter-1.3.2.tar
- 在网络安全中经常会遇到rootkit,NSA安全和入侵检测术语字典( NSA Glossary of Terms Used in Security and Intrusion Detection)对rootkit的定义如下:A hacker security tool that captures passwords and message traffic to and from a computer. A collection of tools that allows a hacker to p
hxdef100r
- Kernel rootkit hacker defender
shv4.tar
- Source code for SHV4 rootkit. Its old version of the rootkit but very good for study purposes
rootkit_hide_process
- Rootkit that hide process selected.
chkrootkit.tar
- rootkit is a tool to locally check for signs of a rootkit.
SpamMon_src
- "spamMonitor is a small program to detect if your computer is sending spams, in case of a virus/rootkit infection. It displays an alert each time an outgoing SMTP connection is established from your PC and gives you all details about such a connectio
chipset_rootkit
- 国外牛人写的。这是一个在XP虚拟机中运行的SMM rootkit,由于SMM的硬件相关性,该程序只能用于装了XP多核的虚拟机上,不过对于这种新兴的chipset级别的rootkit有很高的研究价值。毕竟在黑帽大会上波兰那两个黑客没把源码公布。-SMM Rootkit chipset-level rootkit
svv-2.3-bin
- Detector rootkit kernel mode ring0 sys driver
CsrssWalker
- 在Csrss.exe中,保存着所有Win32子系统进程的进程信息,这些信息以链表的形式保存。 正常情况下,每一个新创建的进程都会通知Csrss.exe,Csrss.exe接收这些信息然后保存起来,所以遍历这个链表就可以得到所有Win32子系统进程的信息。首先就是找链表头了,链表头为CsrssRootProcess,在CSRSRV.DLL导出的函数中有对CsrssRootProcess的操作,因此可以通过CSRSRV.DLL的导出函数找到CsrssRootProcess。 通过遍历这个链表
Regmon
- 一个已经停止开发的软件,但是里面有一部分与ROOTKIT的内容可以参考下。有驱动的加入。-A software has stopped, but there are ROOTKIT part of the content and can refer to the next. Have driven to join.
Zion
- Rootkit实现,做技术探讨,非常具有参考价值,请不要拿来做非法的事-Rootkit achieve, so the technical discussion is very valuable, please do not use to do illegal things
hideprocess
- windows 系统下 隐藏 进程的代码 此代码使用了rootkit技术-windows system code to hide the process of the code used rootkit technology
He4Boot
- 俄罗斯的文件隐藏rootkit,用到了Boot启动技术-Russia' s documents hidden rootkit, used to start the Boot Technology
XXXXXXX
- Fu rootkit source code-Fu rootkit source code
BiosRootkit
- Bios Rootkit Bios Rootkit-Bios Rootkit
darkspy105
- darkspy是一款针对rootkit(攻击者用来隐藏自己的踪迹和保留root访问权限的工具)的多通道检测工具,它联合了多种扫描技术,-darkspy is a targeted rootkit (the attacker to hide their tracks and keep root access tool) multi-channel detection tool, it combined a variety of scanning techniques,
HideProc
- dkom rootkit it will hide files on windows 2k, xp, vista
NTRootKit
- Nt rootkit, developed in delphi