搜索资源列表
-
0下载:
用全局钩子注入,用5字节跳转HOOK了封包发送接收的几个函数-With the overall hook implantation, with 5 bytes of the packet sent Jump HOOK received several function
-
-
0下载:
向进程注入托管程序集(Hook ReadProcessMemory Api)(C#源码)-To process into the managed assembly (Hook ReadProcessMemory Api) (C# source code)
-
-
1下载:
易语言编写的HOOK_ReadProcessMemory,采用的是消息钩子,包括DLL等 整套源码。-Easy language HOOK_ReadProcessMemory, the news hook is used, including the DLL so the whole source.
-
-
0下载:
NP启动后通过WriteProcessMemory跟CreateRemoteThread向所有进程注入代码(除了系统进程smss.exe),代码通过np自己的LoadLibrary向目标进程加载npggNT.des。npggNT.des一旦加载就马上开始干“坏事”,挂钩(HOOK)系统关键函数如OpenProcess,ReadProcessMemory,WriteProcessMemory,PostMessage等等。
挂钩方法是通过改写系统函数头,在函数开始JMP到npggNT.des中的
-
