Search - filter

Search - filter - List

[Hook api] 低级键盘DLL DL : 0: 这是刚刚上传的“键盘测试源代码”配套的dll文件源码。它主要负责键盘消息的截取与过滤。-This is just upload the "keyboard test source code" matching dll file source. It is mainly responsible for the interception of the keyboard with the news filter.
Date : 2008-10-13 Size : 11.88kb User : 罗明
[Hook api] 低级键盘DLL DL : 0: 这是刚刚上传的“键盘测试源代码”配套的dll文件源码。它主要负责键盘消息的截取与过滤。-This is just upload the "keyboard test source code" matching dll file source. It is mainly responsible for the interception of the keyboard with the news filter.
Date : 2026-01-08 Size : 12kb User : 罗明
[Hook api] cfsd DL : 0: windows下利用minifilter驱动技术隐藏文件的代码。-windows using minifilter drive technology hidden code.
Date : 2026-01-08 Size : 44kb User : helwjh
[Hook api] camila4_FileHook DL : 0: 可能是韩国某位高手写的过滤驱动程序，因为注释是韩文的，值得读一读。-South Korea may be an expert to write the filter driver, because the Notes is Korean, it is worth to read.
Date : 2026-01-08 Size : 14kb User : hardway
[Hook api] MouseHook DL : 0: Mouse Hook,简单的全局钩子程序,对指定的事件进行过滤.-Mouse Hook, a simple global hook procedures, the specified event filter.
Date : 2026-01-08 Size : 47kb User : wu0251
[Hook api] HookProcess DL : 0: 进程挂钩，过滤显示信息，实现进程隐藏功能，代码注释详细-Process linked to filter the display of information, the realization of the process of hidden features, a detailed code Notes
Date : 2026-01-08 Size : 4kb User : 李虚东
[Hook api] upan DL : 0: 一个对优盘进行监控的源码，已经调试过，没有什么问题，仅供大家参考，看看。-USB filter.
Date : 2026-01-08 Size : 47kb User : 刘鑫
[Hook api] chipset_rootkit DL : 0: 国外牛人写的。这是一个在XP虚拟机中运行的SMM rootkit，由于SMM的硬件相关性，该程序只能用于装了XP多核的虚拟机上，不过对于这种新兴的chipset级别的rootkit有很高的研究价值。毕竟在黑帽大会上波兰那两个黑客没把源码公布。-SMM Rootkit chipset-level rootkit
Date : 2026-01-08 Size : 237kb User : perfectLC
[Hook api] FITER DL : 0: 基于Filter—Hook Drive设计个人防火墙-Based on Filter-Hook Drive Design of Personal Firewall
Date : 2026-01-08 Size : 119kb User : 杨飞飞
[Hook api] keyboard_filter_doc DL : 0: keyboard filter 搜集的源代码与资料-some keyboard filter documents collected from web
Date : 2026-01-08 Size : 2.81mb User : lileyearhttp://www.p
[Hook api] Professional_Rootkits DL : 0: Professional rootkit Table of Contents Professional Rootkits Credits Introduction Chapter 1 - Tools Chapter 2 - A Basic Rootkit Chapter 3 - Kernel Hooks Chapter 4 - User Hooks Chapter 5 - I/O Processing Chapter 6 - Communications Chapter 7 - Filter Drivers Chapter 8 - Key Logging Chapter 9 - Concealment Chapter 10 - E-mail Filtering Chapter 11 - Installation Considerations Chapter 12 - Ghost Tracker Chapter 13 - Detecting Rootkits Chapter 14 - Preventing Rootkits Appendix A - Freeware Index -Table of Contents Professional Rootkits Credits Introduction Chapter 1- Tools Chapter 2- A Basic Rootkit Chapter 3- Kernel Hooks Chapter 4- User Hooks Chapter 5- I/O Processing Chapter 6- Communications Chapter 7- Filter Drivers Chapter 8- Key Logging Chapter 9- Concealment Chapter 10- E-mail Filtering Chapter 11- Installation Considerations Chapter 12- Ghost Tracker Chapter 13- Detecting Rootkits Chapter 14- Preventing Rootkits Appendix A- Freeware Index
Date : 2026-01-08 Size : 7.84mb User : Prochg
[Hook api] DrvFltIp DL : 0: 防火墙过滤驱动，1) 一个创建设备的驱动程序入口，为通讯创建符号连接和处理IRPs(分派，加载，卸载，创建...)的标准例程。　 2)在标准例程里管理IRPs.在我们的代码中，我们实现了四个IOCTL代码：START_IP_HOOK(注册过滤函数),STOP_IP_HOOK(注销过滤函数), ADD_FILTER(安装新的过滤规则),CLEAR_FILTER(清除所有规则). 　　3)对于我们的驱动，我们实现多个用于过滤的函数。 -Firewall filter driver, 1) a device driver to create the entrance, create a symbolic link for the communication and processing of IRPs (distribution, loading, unloading, create ...) standard routines. 2) in the standard routines in the management IRPs. In our code, we achieved four IOCTL code: START_IP_HOOK (up filter function), STOP_IP_HOOK (cancellation filter function), ADD_FILTER (installation of new filter rules), CLEAR_FILTER (clear all the rules). 3) for our drivers, we used to filter multiple functions.
Date : 2026-01-08 Size : 18kb User : test
[Hook api] 201092150122 DL : 0: HOOK密码截取故名思意就是用键盘记录的方法，现在很多网游密码登陆都没有过多的处理所以很多游戏都可以通过键盘记录获取到，就连大名顶顶的DNF都没有过滤掉希望大家通过这个例子写出更多的自己的作品 -HOOK password interception name suggests means the method is to use keyloggers, password login now many online games are not too many games can deal with so many records to get to via the keyboard, even the name Ding Ding DNF hope you do not filter out More by this example to write their own works
Date : 2026-01-08 Size : 14kb User : weir1
[Hook api] raw_scoket DL : 0: 使用原始套接字对包进行过滤,然后可以对所抓到的包进行详细的分析-use raw socket to filter packet
Date : 2026-01-08 Size : 2.87mb User : dragon.liu
[Hook api] 001 DL : 0: 基于Filter-Hook Driver（使用ipfirewall.h）的IP过滤驱动-Based on Filter-Hook Driver (use ipfirewall.h) the IP filtering driver
Date : 2026-01-08 Size : 6kb User : 林云
[Hook api] SSDT--11 DL : 0: SSDT的全稱是System Services Descriptor Table，系統服務描述符表。這個表就是一個把ring3的Win32 API和ring0的內核API聯繫起來。SSDT並不僅僅只包含一個龐大的位址索引表，它還包含著一些其他有用的資訊，諸如位址索引的基底位址、服務函數個數等。　　通過修改此表的函數位址可以對常用windows函數及API進行hook，從而實現對一些關心的系統動作進行過濾、監控的目的。一些HIPS、防毒軟體、系統監控、註冊表監控軟體往往會採用此介面來實現自己的監控模組，　　目前極個別病毒確實會採用這種方法來保護自己或者破壞防毒軟體，但在這種病毒進入系統前如果防毒軟體能夠識別並清除它將沒有機會發作. -SSDT s full name is System Services Descriptor Table, the system service descriptor table. This is a table of the Win32 API and ring0 ring3 kernel API link. SSDT is not only a huge address contains only the index table, it also contains some other useful information, such as the address of the index base address, the number of functions and other services. Function by modifying the address of this table can be used for windows functions and API hook, in order to achieve the action of some concern to filter systems, surveillance purpose. Some HIPS, antivirus software, system monitoring, registry monitoring software often uses this interface to implement its own monitoring module, At present very few virus does use this method to protect themselves or to destroy anti-virus software, but if the virus before the antivirus software into the system and clear it will not be able to identify opportunities to attack.
Date : 2026-01-08 Size : 328kb User : 小明
[Hook api] Filemon_src DL : 0: 本资源两部分：1、Windows文件系统过滤驱动开发教程(第二版)，中文PDF文件。2、文件监控FileMon源码，C++/C代码-The resources of two parts: 1, Windows File System Filter Driver Development Guide (Second Edition), Chinese PDF files. 2, file monitoring FileMon source, C++/C code
Date : 2026-01-08 Size : 944kb User : seven
[Hook api] FileGuard-safe-hook DL : 0: 文件过滤驱动，File filter driver intercepts file functions include copy, move, Read, Write, and get the file information, and so on. -File system driver.-File filter driver intercepts file functions include copy, move, Read, Write, and get the file information, and so on.-File system driver.
Date : 2026-01-08 Size : 449kb User : 老孙
[Hook api] anit DL : 0: Windows应用程序是基于消息驱动的，任何线程只要注册窗口类都会有一个消息队列用于接收用户输入的消息和系统消息。为了拦截消息，Windows提出了钩子的概念。钩子（Hook）是Windows消息处理机制中的一个监视点，钩子提供一个回调函数。当在某个程序中安装钩子后，它将监视该程序的消息，在指定消息还没到达窗口之前钩子程序先捕获这个消息。这样就有机会对此消息进行过滤，或者对Windows消息实现监控。-Windows application is based on the message-driven, any thread as long as the registered window class will have a message queue for receiving user input and system messages. In order to intercept the message, Windows made a hook concept. Hook (Hook) is a Windows message handling mechanism in a watch point, hook a callback function. When a program is installed in the hook, it will monitor the program s message, the message has not reached the specified window procedure first before capturing the news hook. This will have the opportunity to filter this information, or to achieve control of Windows messages.
Date : 2026-01-08 Size : 7kb User : 田浩
[Hook api] 553425207ekf_4d DL : 0: 里面是粒子滤波有关的几种重采样方法的对比，这对初学者来说很重要-The inside is the particle filter several re-sampling methods about the contrast, this is very important for the beginners
Date : 2026-01-08 Size : 1kb User : xxoo

« 12 »