搜索资源列表
JiurlPortHide
- 本例子是从网上一个的代码更改过来,原先只有对网络数据进行拦截,后来经过本人的更改,实现了对文件(2k和xp下测试过)的访问权限控制-this case from the Internet is a code change over, only to the original data network to intercept and were later I change and realize the right paper (2k and tested under xp) Access Co
HookDeviceIoControl2005.10.26scr
- 一个可以拦截DeviceIoControl的程序 -one can intercept procedures DeviceIoControl
crypt_file.rar
- 可以对txt文本进行透明加解密,进行irp拦截进行加密,Txt text can be transparent encryption and decryption, to intercept encrypted irp
hidmouse23
- 2009 最新的 Keyboard 攔截程式 ,可以跟滑鼠戶丟訊息-2009 latest Keyboard intercept program, households can lose messages with a mouse
RegMon
- 注册表监控驱动程序(以拦截ObReferenceObjectByHandle函数为主)-Registry monitor driver (in order to intercept the main function ObReferenceObjectByHandle)
DiskMon
- DiskMon运行在NT4上才加载驱动,在W2k以上平台其使用kernel event tracing实现磁盘活动的监视, 但其驱动可以跑在W2k/XP/2K3/Vista上 该驱动Hook了disk的driver dispatch例程,不仅可以监视磁盘活动,稍微改下还能拦截、修改上层对磁盘的读写, 很容易就可以搞个什么 基于Disk的 -DiskMon only run on NT4 load on the drive, more than W2k platform in i
xpassthru
- NDIS中间驱动程序截获网络封包 使用DDK编译,对ndis编程有帮助-NDIS intermediate driver using the DDK compiler intercept network packets, for ndis programming help
falkssdtHOOK
- 通过伪造SSDT来拦截对SSDT的HOOK调用-By forging SSDT to intercept calls to the SSDT' s HOOK
ctrl2cap
- 过滤磁盘操作的驱动,可以截取操作磁盘的任何信息-Filter disk drive operations, operation of the disk can intercept any information
20062822597130
- 系统内核(netwall.sys)是一个NDIS中间层驱动程序,用它来截获网络封包, 在安装前,系统中最好不要装有第三方NDIS中间层驱动程序。另外,这属于开 放源代码,作者不提供任何保障,如果对您的机器造成任何损害,我们不负任 何责任。如果您在安装过程中或在使用过程中有什么问题或任何疑问,请发邮 件到: info@netwall.cn, 我们将尽快解决。-Kernel (netwall.sys) is an NDIS intermediate driver, use it to
RegMonDriver20091223
- 监控注册表,采用驱动Cm函数,能拦截API,冰剑修改注册表-Monitoring the registry, the use of drive Cm function can intercept API, modify the registry Bingjian
driver
- 在制作驱动软件的过程中,运用此程序可以用来截取包-Driver software in the production process, the use of this procedure can be used to intercept packets
Driver_Source
- 一个简单的驱动例子,对几个和进程有关的API在内核下进行拦截,可以使进程不被结束,程序不被创建。-Example of a simple drive, and processes related to the number of the API in the kernel to intercept the process can not be the end of the program is not created.
HookCreateProcess
- C++开发的驱动,VB写的接口程序,希望对大家有用,拦截进程的创建,Ring0-C++ development of driver interface program written in VB, hope to be useful, intercept process creation, Ring0
tdifw-1[xx].4.4
- tdi驱动网络拦截例子,包含: 1.tdi驱动防火墙 2.ndis hook框架-TDI driven network intercept examples, including: The drive 1.tdi firewall 2.ndis hook framework
test
- 驱动文件拦截源码,大家自己看看吧-Intercept source drivers
[7-2]EnumRemoveImageNotify
- 枚举与删除映像回调,映像回调可以拦截RING3 和 RING0的映像加载。- Enumerate and delete image correction, image correction can intercept RING3 and RING0 the image is loaded.
isdebug_回调改commandline
- 拦截指定进程创建创建行为并修改启动参数,改改可以实现修改浏览器启动主页,黑心的可能会真的用于劫持浏览器主页吧...(Intercept the specified process to create and modify the behavior of starting parameters change can modify the browser start page, black may be really used to hijack your browser home page...)