搜索资源列表
eeyebootroot.zip
- 一个基于MBR的bootkit,主要功能是实现NDIS的后门技术,接受固定格式的数据包而实现主机红屏。,The eEye BootRootKit NDIS backdoor is a demonstration of boot-time Windows kernel subversion technology. The assembly source code (ebrk.asm) was written for use with MASM 6.11. It comes in pre-pac
BOOTKIT.rar
- bootkit 系统启动引导盘源码 最近鬼影病毒相关源码(说明不专业……),bootkit 系统启动引导盘源码 最近鬼影病毒相关源码(说明不专业……)
c
- 机器狗穿还原完整可编译源代码,这个东西确实可以穿透还原.-Robot Dog wear to restore integrity to compile the source code, that can really penetrate the restore.
code_NTLDR
- inghu 同志的《一种基于NTLDR的BOOTKIT──原理及实现》文中的代码,小弟把它整了出来,并成功进行了实验。如有侵权,请通知-inghu comrades " NTLDR based on the BOOTKIT ─ ─ principle and implementation of" the text in the code, little brother out of it whole, and successfully carried out the exper
bkit
- Bootkit 等同于rootkit的程序源代码-Bootkit equivalent rootkit program source code
bootkit
- 该BOOTKIT是基于NTLDR的文件型BOOTKIT。NTLDR是最接近内核的,而且对它做HOOK,可以避免编写针对各种类型外设的代码,提高通用性。-The BOOTKIT is based on the NTLDR file type BOOTKIT. NTLDR is the closest to the kernel, but it did HOOK, to avoid the preparation of the code for the various types of periph
showIDT
- R3下显示 IDT , IDT hook 研究必用-Under R3 shows IDT, IDT hook with the Study
paper
- Stoned Bootkit StonedBootkit是一种探索性的科学Bootkit,能够在Windows系统启动之前加载并且在内存中驻留。因此,Stoned可以在Windows系统内核之外执行并且能够得到整个系统的控制权。这样可以是用户重新获取系统的完整控制权,而在Vista系统中完整的控制权因为驱动程序的签名而受到限制。
Sinowal_Bootkit
- Sinowal Bootkit源码 不过我试着编译+填充分区表+填充原始MBR到63扇区后写到硬盘无法正常引导~初步估计是Bootloader的问题。 我这没bochs 没法调试 不知道咋回事 有条件的自己调调看吧-Sinowal Bootkit source, but I try to compile+ fill+ fill original MBR partition table to write the hard disk after 63 sector can not prope
Sinowal
- 一个bootkit,对于喜欢玩bootkit的朋友值得下载,学习学习。-code for bootkit,you can download it
Bootkit-tophet
- 高级Bootkit-tophet.doc-Advanced Bootkit-tophet.doc
Bootkit_rev
- bootkit样本分析文章 纯汇编bootkit,32位保护模式下的。
bootkit
- 一个bootkit小程序,在开机的时候path内核来执行自己的代码,对研究磁盘结构,数据还原,系统启动内核有帮助-It has several features such as 1) It s very small.The basic framework is just about 100 lines of assembly code.It supports 2000,XP,2003 2) It patches the kernel at runtime(no files are
Bootkit-full-version-January-2010
- 这是Stoned Bootkit的第二个版本-Stoned Bootkit 2 (28.12.2009 17:37)- AN UNSIGNED CODE LOADER
Bootkit-tophet
- 介绍一种新型的Bootkit技术:Tophet-Introduce a new Bootkit technology: Tophet
Disinfector
- Disinfecter source code for Bootkit(all windows versions up to 7)
CodeGate2011.bootkit
- MBR Rootkit Source with Assembly-MBR Rootkit Source
BootKit_disinfector
- 本文揭示了一种新型的Bootkit技术:Tophet-This code and document is good stuff for studing BootKit technology