搜索资源列表
hiding_concepts_rootkits
- Many people do not realize the real danger from rootkit technology. One reason for this probably that publicly available rootkits for Windows OS are relatively easy to detect by conventional methods (i.e. memory scanning based). However, we can i
SDTRestore
- Win32 Kernel Rootkits modify the behaviour of the system by Kernel Native API hooking. This technique is typically implemented by modifying the ServiceTable entries in the Service Descr iptor Table (SDT). Such modification ensures that a replacement
1
- 基于指令跳转分析的Windows RootKit动态检测技术-Jump instruction based on the analysis of dynamic Windows RootKit Detection Technology
RootKit_pediy
- 来自看雪的RootKit的学习与研究专题的电子书。 Rootkit是什么?估计很多朋友并不明白,简单的说,Rootkit是一种特殊的恶意软件,它的功能是在安装目标上隐藏自身及指定的文件、进程和网络链接等信息,比较多见到的是Rootkit一般都和木马、后门等其他恶意程序结合使用。Rootkit通过加载特殊的驱动,修改系统内核,进而达到隐藏信息的目的。技术是双刃剑,我们研究它的目的在于,透过我们的研究,用这项技术来保护我们的系统,使我们的系统更加健壮,充分发挥这个技术的正面应用。-RootKit
WindowsRootkit
- Windows Rootkit隐藏技术研究 hook钩子-Windows Rootkit
BSDRootkit
- 一本关于rootkit的书籍,很好,我就是从这本书入门的,希望大家喜欢.-rootkit book,rootkit book,
MouseHook
- 利用Rootkit实现的鼠标的拦截记录工具,记录鼠标操作-Using the mouse to achieve the interception Rootkit recording tool, record mouse
Rootkits_Windowsnew
- rootkit 内核安全编程-rootkit kernel security programming ````````````````````
Bootkit_TDSS_Extract
- tdss3 rootkit dumper
PDF
- Collection of PDF - Windows Rootkits, Rootkit detection, Api Hooks, Code Obfuscation Et-Collection of PDF - Windows Rootkits, Rootkit detection, Api Hooks, Code Obfuscation Etcc..
RootkitDetectionpaper
- Rootkit检测方面的有关隐藏进程检测方面的技术文章-Rootkit detection process of detecting hidden aspects of the relevant technical articles
710303Klog-1.0
- klog for rootkit studying
kjkhg
- Windows+Rootkit隐藏技术与综合检测方法-Windows+ Rootkit techniques to hide and comprehensive testing methods
BIOS-Rootkit
- BIOS Rootkit 及其检测技术的研究-BIOS RootkitBIOS RootkitBIOS RootkitBIOS Rootkit
Rootkit
- 介绍里面rootkit的应用,是一个非常好的学习例子。-Introduced inside the application rootkit。It s a very good learning example
Rootkit-in-Android
- 随着android手机的普及,针对android手机的攻击也逐渐增加,本论文着重研究了rootkit对android手机的攻击方式-With the popularity of android phone, android phone for attacks is also increasing, this paper focuses on study of a rootkit attack on the android phone
Rootkit-V0.1
- 某ROOTKIT 的源码,运用了各种SSDT HOOK以及INLINE HOOK,可躲过大部分工具检测-A ROOTKIT source, using the SSDT HOOK HOOK INLINE, can escape most of the tools to detect
07670268VipShell-rootkit-module
- small rootkit, just for fun and study.
RootKit
- 基于线程调度链表检测rootkit,内核态下使用threadlist检测-Detect rootkit-based thread scheduling Chain
kssd-rootkit
- 看雪学院Rootkit学习,1.内核Hook:对于hook,从ring3有很多,ring3到ring0也有很多,根据api调用环节递进的顺序,在每一个环节都有hook的机会,可以有int 2e或者sysenter hook,ssdt hook,inline hook ,irp hook,object hook,idt hook-See snow Institute Rootkit learning, kernel Hook: hook from ring3 many, ring3 to ring