搜索资源列表
从ring3切换到ring0的代码
- 从ring3切换到ring0的代码--The code which can exchange ring3 to ring0
orz
- 这个是我反汇编出来了机器狗的ring3层的代码,差不多都是从IDA里复制过来的,我基本上看不懂,欢迎来聊机器狗。qq295333637-This is my dog out disassemble ring3 layer of code, almost all come from the IDA in copy, and I basically can not read, welcome to dog chat. qq295333637
NtfdDisk20090710
- 这个机器狗创建的符号链接是NtfdDisk 基本原理都是修复补丁,再断开AttackDevice,再在ring3层直接寻址感染-This dog is a symbolic link created the basic principles are NtfdDisk repair patch, and then disconnect AttackDevice, then layer in the direct addressing ring3 infection
1dogokcpp
- 网上的大多数第一代机器狗ring3层代码都缺少几个声明,这个能完全编译,ring0层没带,请自己弄,ring3是直接寻址方式的。qq 295333637-Most of the first generation of online ring3 dog layer codes are the lack of a number of statements, this can be fully compiled, ring0 layer did not have, please get their o
Win32ring3
- windows 操作系统下的 ring3层的病毒入门
anti-debug
- anti debug的大量实例,可用于分析ring3下的anti软件破解.-anti debug a large number of instances, can be used for analysis under the anti ring3 software crack.
RING3-HD-SERIES
- 直接从RING3获取硬盘序列号。可以用来做注册机,非常好用哦!-Directly from RING3 get hard disk serial number. Used to do register! ! !
KeyLog
- A ring3 Keyboard Logger Demo,You can use it to Log anything you input with keyboard.
qudongzhongdeneiheguanli
- 驱动中的内存内核管理详细记载用法等 物理内存 B、 虚拟内存 C、 Ring0地址和Ring3地址 D、 驱动程序和进程的关系 E、 分页和非分页内存 F、 分配内核内存 -Driver in the memory core management records in detail, such as the use of
r3OpenProcess
- VB模块 RING3下打开进程 一般OpenProcess打不开就用这个-General OpenProcess open process under VB RING3 open to use this
ModGetHID
- 通常情况下,我们通过=&HEC命令对IDE端口进行监测.获取硬盘信息. 一般情况下,我们就写个VXD或者DRIVER来完成.但是现在,通过MS的S.M.A.R.T.接口, 我们可以直接从RING3调用API DeviceIoControl()来获取硬盘信息.-Under normal circumstances, we pass = & HEC command IDE port monitoring. Acquire the hard disk information.