搜索资源列表
FU_Rootkit.zip
- rootkit工具,可以隐藏进程和驱动,rootkit tool to hide processes and drive
Zion-Source
- 驱动级的Rootkit工具,可以远程控制-Rootkit driver-level tool for remote control
rootkit.rar
- 这是关于Windows内核编程的一些源程序,适合初学者,是技术含量较高的资料了,This is about a number of programming Windows kernel source code, suitable for beginners, is the technical content of information available to the higher
ROOTKITSde
- 这是rootkit的源代码,相当经典,对提高内核编程水平很有帮助-This is the rootkit source code, very classic, very helpful in improving the level of kernel programming
AFXRootkit2005
- 曾经非常强大的ROOTKIT源代码,现在很难找到了。-Was very powerful ROOTKIT source code, it is difficult to find.
bkit
- Bootkit 等同于rootkit的程序源代码-Bootkit equivalent rootkit program source code
source
- 一个很好的反rootkit例子,终止其运用或替换 重要system dlls.-A good example of anti-rootkit, to terminate the use or replacement of important system dlls.
HideFile
- dd1压缩包里面是驱动源码 console压缩包里面是控制台源码 hide.exe是最终产品 使用方法: 1、将hide.exe复制到系统目录 2、运行cmd 3、hide -h 查看帮助 hide -i 安装驱动 hide -u 卸载驱动 hide -f -a filename 添加一个隐藏文件 by boywhp 07/09/03 Email:boywhp@126.com-DD1 compression driver source pa
shv4.tar
- Source code for SHV4 rootkit. Its old version of the rootkit but very good for study purposes
CsrssWalker
- 在Csrss.exe中,保存着所有Win32子系统进程的进程信息,这些信息以链表的形式保存。 正常情况下,每一个新创建的进程都会通知Csrss.exe,Csrss.exe接收这些信息然后保存起来,所以遍历这个链表就可以得到所有Win32子系统进程的信息。首先就是找链表头了,链表头为CsrssRootProcess,在CSRSRV.DLL导出的函数中有对CsrssRootProcess的操作,因此可以通过CSRSRV.DLL的导出函数找到CsrssRootProcess。 通过遍历这个链表
XXXXXXX
- Fu rootkit source code-Fu rootkit source code
Rootkit
- 这是内核有名的irphook的源码 ,大家可以自己测试,功能不错啊 -This is a well-known irphook the kernel source code, we can test its own functions well ah
Kitkat
- Another rootkit... This is a amall rotkit source code, so you can know where to start from(if you are a beginer)
darkfire
- I m releasing my private ring3 rootkit "DarkFire" now. It s written in C#, source is included. Also there are the 4 examples, but you may also execute the source from VS if you don t trust exes... Features: * Hide Processes * Hide Regis
FU_Rootkit
- 一个简单的rootkit,带源码,开源,叫fu rootkit,特点是小-A simple rootkit, with source code, open source, called fu rootkit, is characterized by small
ossec-hids-2.4.1.tar
- HIDS入侵检测系统 OSSEC源代码,跨平台,支持防火墙联动,文件完整性检测,rootkit检测-OSSEC is a scalable, multi-platform, open source Host-based Intrusion Detection System (HIDS). It has a powerful correlation and analysis engine, integrating log analysis, file integrity checking, Win
source
- source code for hiding via rootkit style
Rootkit-V0.1
- 某ROOTKIT 的源码,运用了各种SSDT HOOK以及INLINE HOOK,可躲过大部分工具检测-A ROOTKIT source, using the SSDT HOOK HOOK INLINE, can escape most of the tools to detect
agony-rootkit
- this the agony rootkit source code.-this is the agony rootkit source code.
the_flying_circus
- One of the best rootkit source code for MacOS supporing 10.x platform.