文件名称:s0rc
-
所属分类:
- 标签属性:
- 上传时间:2012-11-16
-
文件大小:68.42kb
-
已下载:1次
-
提 供 者:
-
相关连接:无下载说明:别用迅雷下载,失败请重下,重下不扣分!
介绍说明--下载内容来自于网络,使用问题请自行百度
新版本“NT系统通用进程保护”完整代码(exe & sys)
保护了进程&线程,除了恢复钩子,不用APC方式是杀不死的。
不过给线程胡乱发送消息还是能杀死,Ring 0内存清零也能杀死。
过几天我把防御“给线程发消息”和“Ring 0内存清零”的驱动发上来。-New version of the " NT System general process protection," complete code (exe & sys) to protect the process & thread, in addition to recovery hooks, no way to kill the APC. However, sending messages to a thread, or can kill indiscriminately, Ring 0 memory is cleared can kill. In a few days I defense " to the thread message" and " Ring 0 memory is cleared," the driver made up.
保护了进程&线程,除了恢复钩子,不用APC方式是杀不死的。
不过给线程胡乱发送消息还是能杀死,Ring 0内存清零也能杀死。
过几天我把防御“给线程发消息”和“Ring 0内存清零”的驱动发上来。-New version of the " NT System general process protection," complete code (exe & sys) to protect the process & thread, in addition to recovery hooks, no way to kill the APC. However, sending messages to a thread, or can kill indiscriminately, Ring 0 memory is cleared can kill. In a few days I defense " to the thread message" and " Ring 0 memory is cleared," the driver made up.
相关搜索: 驱动 保护
(系统自动生成,下载前可以参看下载内容)
下载文件列表
InlineHook_OROBH/buildchk_wnet_x86.log
InlineHook_OROBH/dbghelp.h
InlineHook_OROBH/ddkbuild.bat
InlineHook_OROBH/inlineObReferenceObjectByHandle.dsp
InlineHook_OROBH/inlineObReferenceObjectByHandle.dsw
InlineHook_OROBH/inlineObReferenceObjectByHandle.ncb
InlineHook_OROBH/inlineObReferenceObjectByHandle.plg
InlineHook_OROBH/makefile
InlineHook_OROBH/readme.txt
InlineHook_OROBH/buildchk.log
InlineHook_OROBH/sources
InlineHook_OROBH/buildchk_wnet_x86.err
InlineHook_OROBH/buildchk_wxp_x86.log
InlineHook_OROBH/inlineObReferenceObjectByHandle.c
InlineHook_OROBH/inlineObReferenceObjectByHandle.h
InlineHook_OROBH/inlineObReferenceObjectByHandle.opt
InlineHook_OROBH/VB/cls_Driver.cls
InlineHook_OROBH/VB/MSSCCPRJ.SCC
InlineHook_OROBH/VB/工程1.vbw
InlineHook_OROBH/VB/inlineObReferenceObjectByHandle.sys
InlineHook_OROBH/VB/vb_test.exe
InlineHook_OROBH/VB/form1.frm
InlineHook_OROBH/VB/工程1.vbp
InlineHook_OROBH/objchk_wxp_x86/i386/inlineobreferenceobjectbyhandle.obj
InlineHook_OROBH/objchk_wxp_x86/i386/inlineObReferenceObjectByHandle.sys
InlineHook_OROBH/objchk_wxp_x86/i386/inlineObReferenceObjectByHandle.pdb
InlineHook_OROBH/objchk_wxp_x86/_objects.mac
InlineHook_OROBH/objchk_wxp_x86/i386
InlineHook_OROBH/VB
InlineHook_OROBH/objchk_wxp_x86
InlineHook_OROBH
InlineHook_OROBH/dbghelp.h
InlineHook_OROBH/ddkbuild.bat
InlineHook_OROBH/inlineObReferenceObjectByHandle.dsp
InlineHook_OROBH/inlineObReferenceObjectByHandle.dsw
InlineHook_OROBH/inlineObReferenceObjectByHandle.ncb
InlineHook_OROBH/inlineObReferenceObjectByHandle.plg
InlineHook_OROBH/makefile
InlineHook_OROBH/readme.txt
InlineHook_OROBH/buildchk.log
InlineHook_OROBH/sources
InlineHook_OROBH/buildchk_wnet_x86.err
InlineHook_OROBH/buildchk_wxp_x86.log
InlineHook_OROBH/inlineObReferenceObjectByHandle.c
InlineHook_OROBH/inlineObReferenceObjectByHandle.h
InlineHook_OROBH/inlineObReferenceObjectByHandle.opt
InlineHook_OROBH/VB/cls_Driver.cls
InlineHook_OROBH/VB/MSSCCPRJ.SCC
InlineHook_OROBH/VB/工程1.vbw
InlineHook_OROBH/VB/inlineObReferenceObjectByHandle.sys
InlineHook_OROBH/VB/vb_test.exe
InlineHook_OROBH/VB/form1.frm
InlineHook_OROBH/VB/工程1.vbp
InlineHook_OROBH/objchk_wxp_x86/i386/inlineobreferenceobjectbyhandle.obj
InlineHook_OROBH/objchk_wxp_x86/i386/inlineObReferenceObjectByHandle.sys
InlineHook_OROBH/objchk_wxp_x86/i386/inlineObReferenceObjectByHandle.pdb
InlineHook_OROBH/objchk_wxp_x86/_objects.mac
InlineHook_OROBH/objchk_wxp_x86/i386
InlineHook_OROBH/VB
InlineHook_OROBH/objchk_wxp_x86
InlineHook_OROBH
本网站为编程资源及源代码搜集、介绍的搜索网站,版权归原作者所有! 粤ICP备11031372号
1999-2046 搜珍网 All Rights Reserved.