Location:
Search - XueTr
Search list
Description: 学习系统内核的好工具,大家可以下载来-Kernel of a good learning tool, you can download to play
Platform: |
Size: 403456 |
Author: sunbo008 |
Hits:
Description: 山寨版冰刃源码,很有参考价值,内核安全工具开发必备-Cottage version of Frostsaber source, of great reference value
Platform: |
Size: 3608576 |
Author: hackjoy |
Hits:
Description: XUETR 著名的ark工具 众所周知了..不多说了-XUETR ark ark tools anti root kits
Platform: |
Size: 533504 |
Author: PH |
Hits:
Description: XueTr算是目前最强的反rootkit工具了,本程序完成了对Xuetr的注册表项的隐藏,采取的方式是驱动绕过,而不是简单的GUI HACKER。-XueTr considered to be the most powerful anti-rootkit tool, the program completed Xuetr hidden registry keys, takes the form of driving around, rather than a simple GUI HACKER.
Platform: |
Size: 64512 |
Author: 王田 |
Hits:
Description: vb用驱动结束进程(杀毒软件可能会报病毒),可以结束任意进程(IceSword,XueTr,360等都挡不住)-vb by driving the end of the process (anti-virus software may report the virus), can end any process (IceSword, XueTr, 360 and so can not stop)
Platform: |
Size: 13312 |
Author: 侯文彬 |
Hits:
Description: 不HOOK任何函数,让任务管理器、XueTr、360进程管理器无法结束保护进程(断开链表)-HOOK not any function, so the Task Manager, XueTr, 360 Process Manager can not end the process of protection (off list)
Platform: |
Size: 1024 |
Author: 曹林开 |
Hits:
Description: 1.进程、线程、进程模块、进程窗口、进程内存信息查看,热键信息查看,杀进程、杀线程、卸载模块等功能 2.内核驱动模块查看,支持内核驱动模块的内存拷贝 3.SSDT、Shadow SSDT、FSD、KBD、TCPIP、IDT信息查看,并能检测和恢复ssdt hook和inline hook 4.CreateProcess、CreateThread、LoadImage、CmpCallback、BugCheckCallback、Shutdown、Lego等Notify Routine信息查看,并支持对这些Notify Routine的删除 5.端口信息查看,目前不支持2000系统 6.查看消息钩子 7.内核模块的iat、eat、inline hook、patches检测和恢复 8.磁盘、卷、键盘、网络层等过滤驱动检测,并支持删除 9.注册表编辑 -1 process, thread, process modules, process window, process memory information viewing, hot information to view, kill the process, kill thread, unload the module and other functions 2 kernel driver module view, to support the kernel driver module memory copy 3.SSDT, Shadow SSDT, FSD, KBD, TCPIP, IDT information view, and can detect and recover ssdt hook and inline hook 4.CreateProcess, CreateThread, LoadImage, CmpCallback, BugCheckCallback, Shutdown, Lego, etc. Notify Routine Information check, and to support their Notify Routine Delete 5 port information view, the current system does not support 2000 6 view news hook 7 kernel module iat, eat, inline hook, patches detection and recovery 8 disk, volume, keyboard, network layer filter driver detect, and support for the deletion 9. Registry Editor
Platform: |
Size: 3696640 |
Author: 接收 |
Hits:
Description: 隐藏IDT HOOK,可以过xuetr,PowerTool。发现windbg !idt命令也看不出,看来MS的哥们也偷懒
原理是利用了选择子。直接发码,关于IDT 的知识我就不科普了-Hidden IDT HOOK, can lead xuetr, PowerTool. Found windbg! Idt command can not see, it seems the man is lazy MS
Is the use of a selector. Send code directly on the IDT is not science knowledge I had
Platform: |
Size: 45056 |
Author: 田浩 |
Hits:
Description: 用delphi开发的一款war3全图外挂程序,实现原理是内存修改,希望能帮助一些maphack刚刚入门的人。配合xuetr可以在11平台使用。-a war3 maphack,by delphi
Platform: |
Size: 177152 |
Author: 李哲 |
Hits:
Description: XueTr(简称XT)是一个强大的系统信息查看软件,也是一个强大的手工杀毒软件,用它可以方便揪出电脑中的病毒木马,目前它支持32位的2000、XP、2003、Vista、2008、Win7系统。-XueTr is a free anti-virus&rootkit utility.It offers you the ability to detect, analyze and fix various kernel structure modifications and gives you a wide scope of the kernel.With its help,you can easily spot and remove malwares hidden from normal software.
Platform: |
Size: 3444736 |
Author: Peng Jin |
Hits:
Description: InLine Hook DISK MajorFunction
自己写的 测试时发现过不了小红伞 卡巴斯基 XueTr 因为过不了 所以放出源代码 代码写的不好
其实改改还是可以过的!-The InLine Hook, DISK MajorFunction to write their own test and found not red umbrella Kaspersky XueTr had not so release the source code badly written
Platform: |
Size: 75776 |
Author: 张明 |
Hits:
Description: 如果您对window系统不甚熟悉,您还是不要使用本工具,即使要使用,也不要用本工具胡乱操作。
基于以下原因,由本工具直接或者间接导致的问题,本人概不负责-If you are unfamiliar with the window system, you still do not use this tool, even if you want to use, do not use this tool mishandled. The following reasons, directly or indirectly caused by this tool problem, I take no responsibility for
Platform: |
Size: 3718144 |
Author: 曙光 |
Hits:
Description: R3结束进程。可以结束XueTr。以进程ID为参数运行程序即可结束进程.-R3 end of the process. Can end XueTr. Process ID as a parameter to run the program to end the process.
Platform: |
Size: 6144 |
Author: bug |
Hits:
Description: VC6编写,有调试程序和单独DLL文件,HOOK CreateProcess函数,加载后禁止程序,类似于Xuetr的禁止进程功能-HOOK CreateProcess function to prohibit the creation process
Platform: |
Size: 2634752 |
Author: |
Hits:
Description: 系统内核检查代码,有点像XUETR.一句话经典-Check the code of the system kernel, bit like XUETR. Word classic
Platform: |
Size: 157696 |
Author: 张建 |
Hits:
Description: XueTr工具的使用手册,chm格式,文中列举了XueTr所有功能的使用,和手动查杀病毒的示例。-Tool user manual XueTr, chm format text cited the use of all the features of the XueTr, and the example of killing the virus manually.
Platform: |
Size: 2955264 |
Author: 老崔 |
Hits:
Description: MP游戏保护源码
1. 此套保护仅在Windows XP SP3系统上做过测试。
2. 保护程序是在VS2010环境下编译的。
效果:
1. 防止受保护进程被未授权的进程暂停。如,OD在附加进程的时候是要将目标进程暂停的,有了MP保护以后,OD将无法附加进程,因为OD无法将受保护的进程暂停。
2. 防止受保护进程中的数据被修改。如,CE无法修改受保护的进程的内存数据。
3. 当受保护进程中的内存数据被未授权的进程修改的时候,会有提示。
4. 防止受保护的进程被未授权的进程结束。如,用任务管理器去结束受保护程序的进程,将失败。
5. OD选择要附加进程的时候将找不到受保护的进程。
6. 当OD附加受保护的进程时将发生错误。
7. 如果用如类似XueTr的工具将MP保护的inline hook恢复,那么MP保护将会检测到。
8. MP保护开启后可以一定程度的阻止调试程序,如OD、CE、XueTr、WinDbg等的开启。
-MP game protection source code
This set of protection only been tested on Windows XP SP3 system.
2 saver in VS2010 compiler environment.
Effect:
1. Prevent the protected process is not authorized to suspend a process. Such as, OD additional process when you want to target process suspended after MP protection, OD process will not be attached because the OD pause can not be protected process.
2. Prevent the the protected process data is modified. Such as, CE process protected memory data can not be modified.
3 When memory data protected process to modify the process is not authorized, there will be prompt.
4. Prevent the protected process is not authorized by the end of the process. For example, use the Task Manager to end the process of the protected program, will fail.
OD choose to attach the process will not find a protected process.
6 error will occur when the OD additional protected process.
Such as similar XueTr tools restore MP protected inline hook, MP protection wil
Platform: |
Size: 1178624 |
Author: ljh |
Hits:
Description: 山寨XUETR工具!!源码 实际达不到XUETR的功能但是你们稍微修改下就行了-The cottage XUETR tool! ! Source actual amounted to less than functionality of the XUETR but you slightly modify the next on the line! ! !
Platform: |
Size: 423936 |
Author: 李雷雷 |
Hits:
Description: 一个Windows系统信息查看软件,同时也是一个手工杀毒辅助软件。目前软件支持2000~win8.1的所有32位操作系统,还支持64位的Win7、Win8和Win8.1系统。这个是其早期的版本, 不喜勿下-A Windows system information of software, but also a hand-assisted anti-virus software. Currently the software supports all 32-bit operating system 2000 ~ win8.1, and also supports 64-bit Win7, Win8 and Win8.1 system. This is an early version of it, do not like do next
Platform: |
Size: 17002496 |
Author: mayl |
Hits:
Description: 2010-11-30 吾爱破解专版:
1.新增WorkerThread枚举,主要为了对付一些TDSS病毒(感谢dl123100指点思路)
2.新增一个XueTr使用帮助手册
3.修正一处LSP和安全模式修复功能的Bug(2010-11-30 cracked version:
1. new WorkerThread enumeration, mainly in order to deal with some TDSS virus (thank dl123100 pointing ideas)
2. add a XueTr using the help manual
3. modify a LSP and security mode repair function of Bug)
Platform: |
Size: 3684352 |
Author: 晓夜微白
|
Hits: