搜索资源列表
HideService
- 虽然我不知道icesword是什么样列举服务的,但估计最终也是通过历遍SCM内部的ServiceRecordList来检测。 为什么呢?看下面。 用附件中的InjectDLL.exe把hideservice.dll注入到Services.exe进程后就会把Alerter服务隐藏掉。用icesword也检测不出Alerter服务了。 代码原理很简单,就是在Services.exe进程找到ServiceRecordList表,将需要隐藏的服务从链表上断开。 既然icesword
InjectDll
- 一个C++的源码,关于远程注入的。代码还不错。-A C++ source code, on the remote injection. Code is also good.
Injector
- BOOL InjectDLL(DWORD ProcessID) { HANDLE Proc char buf[50]={0} LPVOID RemoteString, LoadLibAddy if(!ProcessID) return false Proc = OpenProcess(CREATE_THREAD_ACCESS, FALSE, ProcessID) if(!Proc) { sprintf
InjectDll
- 将一段数据注入到一个动态链接库中,程序会在动态链接库中新增一个section来存放注入的数据。-To inject a piece of data to a dll, the program will add a section in the target dll and fill it with the injecting data.
InjectDLL
- 实现在远程进程中申请一段内存空间,运行自己的程序,达到远程监控的目的,希望可以帮助大家-Application in the remote process to achieve a memory space, running their own procedures to achieve the purpose of remote monitoring, I hope to help you
InjectDll
- r3下面,往exe里面注入dll,适合绝大多数可执行文件-NO ENGLISH
Shell_injection
- 内核ShellCode注入的一种方法,源码 测试方法,用工具加载InjectDll,然后运行DllLoad,点击Test按钮 -A method kernel ShellCode injection
InjectDll
- 简单的注射DLL到指定进程的代码,非常实用-SAMPLE INJECT DLL INTO SPESCAL PROCESS.IT IS A SAMPLE CODE
InjectDll
- 远程注入工具,可以注入DLL文件到目标程序当中。(Remote injection tools can be injected into the DLL file into the target program.)