搜索资源列表
hideregrootkit
- 驱动类 rootkit HOOK注册表读取-driven category rootkit HOOK read registry
jpchengxu
- 前段时间做键盘程序,查了很多资料,这是个钩子程序,网上也可以找到,后面还有一个虚拟键盘程序,读一下会为写键盘程序省不少力气-side of the keyboard to do procedures, and examine a lot of information, this is a hook procedures can be found online. but behind a virtual keyboard procedures, read the keyboard to write
modifyfilespy
- 修改过的filespy驱动 移植了tooflat部分代码到filespy中,hook 了write 和read ,加密标记还没有处理好.
DLL
- 驱动编程, 实现hook writeprocememory 达到读写内存的 目的,不信你也试试 驱动编程, 实现hook writeprocememory 达到读写内存的 目的,不信你也-Driven programming, hook writeprocememory purpose to read and write memory, do not believe you try to drive programming, hook writeprocememory purpose to
syshide
- 通过hook实现文件,进程等的隐藏,注释详细,容易读懂-Through the hook files, processes, such as hidden, comments, detailed, easy to read
DiskMon
- DiskMon运行在NT4上才加载驱动,在W2k以上平台其使用kernel event tracing实现磁盘活动的监视, 但其驱动可以跑在W2k/XP/2K3/Vista上 该驱动Hook了disk的driver dispatch例程,不仅可以监视磁盘活动,稍微改下还能拦截、修改上层对磁盘的读写, 很容易就可以搞个什么 基于Disk的 -DiskMon only run on NT4 load on the drive, more than W2k platform in i
PCIdemo_backup2015_5_13
- 基于RTX8.1,实现PCI板卡查找,中断挂接,内存读写操作,以及WIN32与RTX共享内存操作-Based RTX8.1, achieve PCI card search, interrupt hook, memory read and write operations, and WIN32 with RTX shared memory operations