搜索资源列表
rootkit
- 几款ROOTKIT,都不错 发出来,希望需要得人又帮助-paragraphs, the issue has been pretty good, in the hope that those who need help
RootKit
- 检测进程的代码,可以查出当前Rootkit进程。推荐!(使用挂钩线程调度链表) -detection process code, we find the current Rootkit process. Recommended! (Using thread scheduling chain link)
HOOK了所有中断向量的rootkit
- 代码hook了所有256个中断向量,在debdgview下打印输出了中断历程,使用是请加载.sys驱动程序,具体代码请看.c文件
FsWalker_src
- 一份anti - rootkit代码
Rootkit 内核hook 隐身术
- Rootkit 1。 内核hook 隐身术 ring0中调用ring3程序 其他
FUTo_enhanced.zip
- FU rootkit (enhanced),FU rootkit (enhanced)
BIOSRootkitIVTHook.rar
- BIOS Rootkit为了达到控制系统流程的目的,一般会采用Hook IVT,即Hook中断向量表的方式来实现。IVT Hook的实现和检测,涉及许多具体的问题。因此,我把IVT Hook分几部分来进行讨论。在本节和下面几节中,我们将讨论如何借助Bochs的帮助来查看原始IVT、分析IVT Hook情况以及在此基础上写一个简单的IVT检测程序。闲话少说,这就开始我们的旅程吧,BIOS Rootkit process control system in order to achieve the
rootkit.rar
- 一个rootkit原理程序演示 ,附带了运行system的工具,代码附有部分注释,The principle of a rootkit program demonstration, with the operation system of tools, code with some comments
rootkit.rar
- 这是关于Windows内核编程的一些源程序,适合初学者,是技术含量较高的资料了,This is about a number of programming Windows kernel source code, suitable for beginners, is the technical content of information available to the higher
Rootkit.rar
- 看雪里面【专题四】Rootkit的学习与研究文章的收集BY:脚本QQ:175943462,Snow look inside four】 【Rootkit topic of study and research on the collection of article BY: scr ipt QQ: 175943462
Rootkithideport
- 利用rootkit技术实现的端口隐藏,感觉还不错哟-Use of rootkit technology to hide the port, feeling pretty good yo. .
load_Sys
- 驱动程序加载卸载工具 编写RootKit加载驱动程序的测试工具 自己写的-Driver loading and unloading tools prepared RootKit driver load testing tool wrote it myself
ROOTKITS_src
- <ROOTKITS——Windows内核的安全防护>一书的配套代码。 非常值得rootkit爱好者们学习。-<ROOTKITS——Windows内核的安全防护> A complete code for the book. Rootkit lovers very worthwhile to learn.
Rootkit
- 全面Windows RootKit技术论文资料!-some Rootkit papers!
rootkit
- 内核隐蔽进程,可隐蔽进程,有驱动编程技术-rootkit hidden process, the process can be hidden, a driver programming
the-detection-of-kernel-rootkit
- 内核脱钩技术在检测rootkit木马信息隐藏中的应用-Decoupling in the detection of kernel rootkit trojan application of information hiding
rootkit
- 专业rootkit介绍书籍,学习rootkit编程的好资料-Professional rootkit introduce books, study the good material rootkit programming
ROOTKIT
- ASM Rootkit Native Good learning Code to studyASM
Rootkit端口隐藏技术
- ROOTKIT 利用hook技术可以隐藏指定的端口 需要以驱动加载的形式把hook加载进内核 这里利用了insdrv工具(The ROOTKIT uses hook technology to hide the specified port and needs to load the hook into the kernel in the form of driver loading using the insdrv tool)