搜索资源列表
vs
- My Mini 操作系统 源码.目前已经实现的功能: 阶段1: 1 BootSect 2 Kernel Loader (已经进入保护模式,并且将必要的参数传递给Kernel) 3 Kernel (开启页式存储,物理内存的简单管理,为中断提供了一套基本的接口,利用Bget建立了一个简单的堆) 阶段2: 1 优化了一部分代码,包括内核堆,内核栈的重新布置 2 初始化了一个TSS,用以处理特权级变化 3 将GDT从以前的KernelLoader空间到自己的空间 4
Ring3RunRing0Code
- 无驱动Ring3执行Ring0层的代码,爱好安全的朋友值得研究研究-No driver Ring3 Executive Ring0 layer code, loving Hacker s friends, is worth studying the Code
mini_ext2
- 代码功能: 1、利用io端口读磁盘 2、读ext2文件系统中的文件 注意: 1、代码只在ring0状态下测试通过。 2、代码没有读分区表的功能,group0的位置是通过查看磁盘文件得来的,每个磁盘的group0的位置可能不同。 3、此代码仅作为用io端口读磁盘和读ext2文件系统的参考代码。-Code function: 1, 2, using io-port read disk, read ext2 file system files Note: 1, the c
K-Trojan_5
- Grab pass: Edialer, The Bat!, Outlook Express, Internet Explorer, ICQ[2003 & Lite], FAR, Windows Commander, Dial-Up [98 & NT]. List of installed program RING0 FW bypass throught hide IExplorer window Intercept passwords: mail, FTP, auth [base
DRIVER_ring0
- 驱动进RING0,代码可能稍微老一点,但是好使哦,希望对大家有帮助!-Driven into the RING0, the code might be slightly old point, but so Oh, we want to help!
TaskMgrRing0
- Task Manager at ring0 driver source code
qwe
- 程序用内核驱动的方式进入ring0,然后访问EPROCESS结构,在EPROCESS结构中找到进程链,从而可实现进程的枚举,但是由于PID 为0的系统进程Idle并没有在这个链上.所以通过这种方法自然也就找不出它来.程序输出可以用softice或DebugView工具查看. 本程序只在XP下调试通过.-Procedures with the way the kernel driver into the ring0, then visit EPROCESS structure, the struc
HOOK-class
- HOOK技术的Ring0级进程保护组件设计与实现-HOOK-class process technology Ring0 component design and implementation of protection
r3_to_r0
- 从ring3切换到ring0的代码,windows内核代码-Switch to ring0 from ring3 code, windows kernel code
findhideprocess
- 检测隐藏进程,多个实例,从ring3到ring0都有,很好的参考资料-Detect hidden processes, multiple instances, from ring3 to ring0 have, a very good reference
ByASMcode
- ASM纯净,编写的病毒感染的文件、变形入口代码,自己加密等功能,是一种EPO的没有任何病毒签名,都是为了对抗反病毒软件的特征码抗病毒、行为杀毒及虚拟机抗病毒、现有的代码,未提供任何破坏功能,但可以积极的感染可执行文件和感染的文件很难恢复, 请注意除了这事还提供了Ring0功能,主要用于感染运行中的可执行文件-Pure by ASM virus written, has infected file, entry code deformation, oneself encryption, and
725346DESPSample
- 好吧,这是个DES加密程序的源代码,但是解密似乎有点问题-Get 360 of the super powerful source code, the use of the Ring0? Or Ring3? Forget ... ... to write a long time ago ... ...
RestoreShadowInUser
- Ring0下恢复SSDT Shadow,在用户端的情况下恢复系统描述表-Under the recovery Ring0 SSDT Shadow, in the case of the client to restore the system descr iption
w9xddddk
- Windows 9x下读写物理扇,适合初学者进行学习研究,不错的源码区——Ring0技术-Physical read and write under Windows 9x fans, suitable for beginners to learn research, a good source area- Ring0 Technology
12121212
- Ring0全局钩子防御网马,现在通行的不少浏览器都带有一定的网马检测功能和防御功能,本文主要从Ring0角度做一点方法介绍-Global defense network Ring0 hook horses, many browsers now prevailing net with a certain horse detection and prevention capabilities, this article from the point of doing that method intr
SSDT
- 城里城外看SSDT,ring3与ring0之间-Outside the city to see SSDT, ring3 and between ring0
SuperKillFile.exe
- RING0强删文件 其实驱动既不是jupiter写的,也不是我写的。顺便说一句我的深度解析360马上就写好啦!请多多关注底层版。 -RING0 strong drive deleted file is not a jupiter in fact written, nor is my writing. By the way, the depth of resolution 360 I immediately write it right! Please pay attention on t
safe-access
- 可以防止ring0下直接对IO监控来获取密码的密码框源码-Can prevent ring0 directly on the IO control to obtain the source code of the password box
adetours_ring0_2.1
- Ring0 version of the detours by microsoft.
DriverCheck
- 用驱动进入Ring0扫描所有进程Delphi代码,XP Sp3测试成功-With a drive into the Ring0 Delphi code to scan all processes, XP Sp3 tested successfully