搜索资源列表
Hook-Driver-by
- windows ndis钩子程序,用于防火墙、vpn、nat、网络驱动等软件的开发。-hook procedures for firewall, VPN, nat, network drives, such as software development.
regedit_fxfilthook
- 手工修改注册表比较困难 注册fxfilthook驱动程序-the ability to modify the registry more difficult registered fxfilthook Driver
MPUSBAPI
- MicroChip的USB 芯片的驱动API函数库,编译以后成为MCHPFUSB.d-MicroChip the USB Driver API functions, After compiling become MCHPFUSB.d
SystemModulesSee
- 获得所有windows加载的内核模块信息。 一个不错的学习windows驱动程序和windows内核的代码。-access to all windows kernel module loading information. A good learning windows driver and windows kernel code.
driver
- 用DDDK编写驱动,修改SSDT表HOOK NTDebugActiveProcess函数 钩子函数中可以判断PID号,决定是否放行,放行则在钩子函数中调用原来的NTDebugActiveProcess函数.否则直接返回False.HOOK成功后所有调用DebugActiveProcess的程序将会失效.当然可以按照你的需要HOOK更多的系统服务函数.同一服务函数的服务号在每个操作系统版本中是不同的.下面附件中编译完成的驱动请在WinXP SP2的环境下测试.否则可能会导致直接重启
WIN30
- MAPWIN, written by Richard Smith (president of Phar Lap Software), is a program that makes it easy to see what API functions a Windows program uses, or what functions a dynamic-link library (DLL) or device driver provides. Phar Lap generally u
内核模式的apihook
- 内核模式的apihook例子,使用了驱动程序。-apihook example, the use of a driver.
c_api_hook.zip
- NT下的用驱动程序写的截获api函数调用的程序,Under NT driver written using api function call intercepted procedures
basic_1.zip
- windows hook 的好例子,Windows内核的安全防护,windows hook driver
hook
- 驱动挂钩,拦截指定函数调用。 -Driver linked to intercept the specified function call. Driver linked to intercept the specified function call.
Winio.rar
- Winio做的键盘记录(硬件记录)。有时候调用windows的API不能起效。这个是驱动级别的。能成功完成任务。,Keyloggers do Winio (hardware records). Sometimes windows of the API calls can not take effect. This is a driver level. To the successful completion of the task.
winIO2
- 驱动级模拟使用winio模拟键盘和鼠标的例子-Driver-level simulations using the keyboard and mouse winio simulation examples
Filemon_src
- 本资源两部分:1、Windows文件系统过滤驱动开发教程(第二版),中文PDF文件。2、文件监控FileMon源码,C++/C代码-The resources of two parts: 1, Windows File System Filter Driver Development Guide (Second Edition), Chinese PDF files. 2, file monitoring FileMon source, C++/C code
SSDT-hook
- Windows内核态SSDT-hook实现进程隐藏和文件隐藏,代码很规整,学习内核编程的好例子 -a good example of studying kernel programing or driver developing, SSDT hook
Hook_ZwQueryInformationProcess_VC
- hook ssdt的驱动的实现,隐藏进程。-hook driver
antihook_src
- 创建一个内核驱动,伪造一个ssdt表,使得ssdt钩子失效。-Create a kernel driver, forged a ssdt table, making failure ssdt hook.
HookKey
- IRP Hook 键盘Logger源代码 键盘Logger是Hook 键盘类驱动Kbdclass的分发函数,在类驱动的下面是端口驱动。用DeviceTree 可以看到PS/2键盘的端口驱动是i8042prt,USB键盘的端口驱动是Kbdhid。无论是PS/2 键盘还是USB键盘,在端口驱动处理完IRP之后都会调用上层处理的回调函数,即KbdClass 处理输入数据的函数。Hook 这个回调函数,不但可以实现兼容PS/2 键盘和USB 键盘的Logger,而且比分层驱动的方法更加隐蔽。-
FileGuard-safe-hook
- 文件过滤驱动,File filter driver intercepts file functions include copy, move, Read, Write, and get the file information, and so on. -File system driver.-File filter driver intercepts file functions include copy, move, Read, Write, and get the file informat
PLX9x5x-PCI-Driver
- 本软件演示如何编写PLX 9X5X 的windows驱动程序-This sample demonstrates how to write driver for a generic PCI device using Windows Driver Framework.
DRIVER-2697230OpenCVdjuljc2845658
- 在这里跟大伙分享一个源码的DRIVER-2697230OpenCVdjuljc2845658的功能,很不错的-Share with everyone here a source DRIVER- 2697230 opencvdjuljc2845658 function, very good