搜索资源列表
FU_Rootkit.zip
- rootkit工具,可以隐藏进程和驱动
Hacker Defender 1[1].0.0源代码
- Hacker Defender 1.0.0 内核级后门软件,用户可以通过本软件隐藏文件、进程、系统服务、系统驱动、注册表键的键和键值、打开的端口以及虚构可用磁盘空间。程序同时也在内存中伪装它所做的改动,并且隐身地控制被隐藏进程。程序安装隐藏后门,注册隐藏系统服务并且安装系统驱动。该后门技术允许植入Redirector。鉴于参数过多,不推荐新手使用。-Hacker Defender 1.0.0 kernel-level backdoor software, users of the softw
Drv_HideFile
- 在驱动层实现对文件的隐藏 开发环境:VC+WIN2000+DDK-achieve the driver layer of documents hidden development environment : VC WIN2000 DDK
dkomdriver
- ntrootkit 驱动类 隐藏驱动模块-ntrootkit driven category hidden drive module
dkomproc
- 驱动类 另一种方法 隐藏进程 注意5个驱动编译需要的makefile 和 source 需要写-another way to hide the process of compiling five drivers need makefile and sour ce need to write
dvKrnlData
- 该代码为我学习winnt内核时所写,主要功能是在ring3下通过DeviceIoControl与驱动进行通信,获取内核的数据以及sdt,idt信息等。并实现了hook NtQuerySystemInformation函数来实现进程隐藏的功能-The code for the kernel, I am learning winnt wrote, Its main function is in ring3 through DeviceIoControl communication with the
ifsdoc
- 文件系统驱动开发的文档资料(IFS DDK),包括新文件过滤接口程序员指南.rar,实现对硬盘的监控.txt,文件重定向操作.txt,注册表重定向.txt,DLL函数重定向的问题.txt,关于文件夹地隐藏.txt等。-file system driver development Documentation (IFS DDK), including new file filters Interface Programmer's Guide. rar, the hard drive moni
FU_Rootkit
- windows rootkit,可以列举出内核驱动程序以及就可以把自己的.sys隐藏起来-windows rootkit. can be cited and kernel drivers will be able to own. sys hidden
235634645
- 隐藏自身进程,利用部分设备驱动原理,在win2000,xp,2003上通过,不支持9X-hide their own processes, the use of some device driver for the WIN2000, xp, 2003, adopted X does not support 9
cfsd
- windows下利用minifilter驱动技术隐藏文件的代码。-windows using minifilter drive technology hidden code.
easyshell
- 不错的后门代码,用了一些驱动技术来隐藏进程,隐藏注册表,希望对大家有所帮助-good backdoor code, used some technology-driven process to conceal, hide the registry, and I hope to help everyone
processHide
- 使用驱动隐藏指定进程,演示vb驱动加载及通信-Use the specified process-driven hidden
qudong
- 驱动控制 源码 驱动保护 驱动隐藏 驱动终止-Drive control source drive to protect the driver to hide the driver to terminate.
HIDEPROCESS
- 驱动隐藏进程源码 通过 SSTD 实现-Driver hidden processes the source code
XNRE
- 易语言驱动隐藏进程源码Yi language drive hidden process div hr div B 文件列表 B : div()
BOX
- 驱动级的隐藏进程---通过断链,PspCidTable,Csrss这几张表来实现进程的隐藏,源码可以直接编译!~~ (HideProcess by driver ...)(Driver level hidden process --- by breaking the chain, PspCidTable,Csrss tables to achieve the process hidden, the source code can be compiled directly! ~ ~ (HidePr
源码
- 进程隐藏之断链隐藏源码,通过断链方式来隐藏进程,驱动不成功的可以考虑试试这个(The process of hiding the broken chain hidden source, by breaking the chain to hide the process, the driver failed to consider this try.)
HideARK
- 临时隐藏WRK工具,确保上游戏检测不到wrk工具驱动,单没有过PG,所以长时间开启会109蓝屏,只用于快速测试和获取游戏相关信息(Temporarily hide WRK tools to ensure that the wrk tool driver is not detected in the game, and there is no PG, so long-time open will be 109 blue screen, only for rapid testing and acqu
Rootkit端口隐藏技术
- ROOTKIT 利用hook技术可以隐藏指定的端口 需要以驱动加载的形式把hook加载进内核 这里利用了insdrv工具(The ROOTKIT uses hook technology to hide the specified port and needs to load the hook into the kernel in the form of driver loading using the insdrv tool)
进程保护 驱动级
- 驱动级进程保护,可隐藏或保护。360任务管理器也看不到。