资源列表
07670268VipShell-rootkit-module
- small rootkit, just for fun and study.
dll
- dll钩子dll hook dll hook-dll hook dll hookdll hookdll hook
killmyself
- 杀死程序自己的小程序,运行后点击杀死自己。此程序将会被删除。-KILL MY SELF。
Hook-TStringGrid-TDBGrid
- 钩子,可以勾取delphi的TStringGrid和TDBGrid内容,保存到C盘。-hook.Get Content from TStringGrid and TDBgrid of Delphi Application.
HookAPILib
- 一个HOOK LIB的源码,支持多线程,效率较高-A HOOK in the LIB s source code, support multi-threading, efficient
Rootkit-V0.1
- 某ROOTKIT 的源码,运用了各种SSDT HOOK以及INLINE HOOK,可躲过大部分工具检测-A ROOTKIT source, using the SSDT HOOK HOOK INLINE, can escape most of the tools to detect
ListboxHeight
- 示例:改变列表框下拉高度,设置下拉高度,可见效果.-Example: change the list box drop height, set the drop-down height of the visible effects.
HookNtQuery_File
- 通过远程线程技术和HOOKAPI技术实现的文件隐藏源代码,利用了windows的Detour开发库,以Inline HOOK的方式实现对NtQueryDirectoryFile函数的拦截-The source code of hiding files with HOOKAPI technology and remote thread technology.Detours and inline hook.Hook NtQueryDirectoryFile function
MaskKeyBD
- 键盘按键屏蔽,可以设置需要屏蔽的按键集合。-keyborad mask,can set keys
zmpidrive
- 通过修改ssdt表 hook掉ZwTerminateProcessZwLoadDriver以及ZwSetSystemInformation 是一份比较简单易读的驱动程序入门源码 是zmpi软件的进程防护拦截模块-By modifying the SSDT hook ZwTerminateProcess ZwLoadDriver and ZwSetSystemInformation Is a relatively simple driver entry source.
int3-Hook
- int3 hook 相当于drx Hook-int3 hook drx Hook
key
- 键盘监视软体(VB) 防止电脑被人乱搞没纪录的软体-Keyboard monitoring software (VB) to prevent the computer has been messing around and did not record software