Location:
Search - backdoor
Search list
Description: 让进程在系统中更加隐蔽(2) 一般来说一个后门程序需要更改系统的某些文件来让程序在系统启动执行这个程序, 又要在某个地方保留这个程序(一般是在硬盘)。如果有什么办法不这样做又让程序在 系统中运行的话,就可以使后门程序更加隐蔽。也就是说程序在硬盘上找不到在系统的 启动配置中没有这有项。真正要做到这样好象不太现实,但可以采用简单的方法:在程 序被执行后删除程序文件和启动文件中被更改的部分,然后在系统被关闭前保留程序文 件和更改启动文件,让它在系统启动时又能被执行。 程序是一个可执行文件在被执行时系统会把它保护起来,如果要删除它需要更改系 统!很麻烦!可以把代码放到其他程序中作为另外进程的线程来运行既利用创建远程线程 函数。系统被关闭一般有三种情况:正常关机,掉电(不正常关机),一键关机(按下power). 对于正常关机,程序会收到CTRL_SHUTDOWN_EVENT的信号,一键关机,可以简单的使用钩子 但掉电(不正常关机)老农实在想不出办法。好在一般的nt服务器很少这种情况。 在nt系统下用CreateService来注册一个服务,当然是在系统SHUTDOWN前。在启动时 用DeleteService删除这个服务,保存一个程序文件在虚拟内存中,删除在硬盘上程序-process in the system to allow a more subtle (2) In general a backdoor procedures need to change the system to certain documents procedures for the system to initiate the implementation of this procedure, but also to retain a place in the process (usually in a hard disk). If there is any way to do so without letting procedures in the system running, then we can process more subtle back door. In other words procedures not found in the hard disks on the system's configuration did not start with this item. Really want to do so it did not seem realistic, but it is a simple approach : in the process would be implemented to delete files and startup files were altered, Then the system was closed down before the document retention procedures and changes in startup files, it started when the sy
Platform: |
Size: 75506 |
Author: 无间刀 |
Hits:
Description: 线程插入后门带传染功能-threaded insert infected with backdoor function
Platform: |
Size: 75889 |
Author: 缪羽 |
Hits:
Description: Windows2000-XP服务级后门远程控制程序源码-Windows-XP service-level backdoor remote control procedures FOSS
Platform: |
Size: 5086 |
Author: none |
Hits:
Description: phpshell,就是php的后门和命令行.很好用.-phpshell, is the backdoor php and the command line. Very good use.
Platform: |
Size: 3151 |
Author: hehe |
Hits:
Description: 后门程序正反向连接获得SHELL用Release编译方式.DEBUG版本的程序大小是Release版本的几倍,都是些没用的调试信息-pros and backdoor access to connect with Release compiler SHELL way. DEBUG size versions of the program is the Release version of times that are more useless information for debugging
Platform: |
Size: 23425 |
Author: 扬载伦 |
Hits:
Description: Hacker Defender 1.0.0
内核级后门软件,用户可以通过本软件隐藏文件、进程、系统服务、系统驱动、注册表键的键和键值、打开的端口以及虚构可用磁盘空间。程序同时也在内存中伪装它所做的改动,并且隐身地控制被隐藏进程。程序安装隐藏后门,注册隐藏系统服务并且安装系统驱动。该后门技术允许植入Redirector。鉴于参数过多,不推荐新手使用。-Hacker Defender 1.0.0 kernel-level backdoor software, users of the software can be hidden files, processes, systems and services, the system drive, registry keys and the keys keys, open ports and fictitious available disk space. Programs are also memory camouflage it changes made to the stealth and hidden control process. Installation hidden back door, registered hidden and system services to install the system drive. The backdoor allows implantation Redirector. Given the parameters too much, do not recommend the use of newcomers.
Platform: |
Size: 92628 |
Author: 苹果 |
Hits:
Description: T-Cmd v1.0是一个服务级的后门程序,适用平台
为Windows2000/XP。它可自动为远程/本地主机创建服务级后门,无须使用任何额外的命令,
支持本地/远程模式。重启后,程序仍然自动运行,监听端口20540/tcp。-T-Cmd v1.0 is a service-level backdoor procedure, the application platform for Windows2000/XP. It can automatically for remote / local host service level to create a back door without the use of any additional orders, support local / remote mode. After the restart, automatic procedures are still running, bugging port 20540/tcp.
Platform: |
Size: 13891 |
Author: 冰魂 |
Hits:
Description: 后门程序-WINSHELL,希望您能够从此软件中知道黑客后门程序的原理-backdoor - WINSHELL and hope you can learn from software hackers backdoor Principle
Platform: |
Size: 20864 |
Author: 张山 |
Hits:
Description: 内核级后门程序ntshell核心代码-kernel-level backdoor ntshell core code
Platform: |
Size: 2036 |
Author: 校风 |
Hits:
Description: 一款经典的后门,绝对好用,作者是伟大的janker老前辈,一定要下载下来看看啊,如果不下载是你终生的后悔,真的,同志们,快下载吧,有源代码在里面-classic backdoor absolutely useful, the author is a great janker veteran must download under arrives, if you have not downloaded a lifelong regret, really, comrades, and quickly download it, the active code inside
Platform: |
Size: 59160 |
Author: dfsa |
Hits:
Description: 木马代码 NameLess BackDoor V1.14(稳定版)源代码 , 十分珍贵的东西,强烈建议下载. 感谢作者的开源-Trojan code NameLess BackDoor V1.14 (stable version) source code, a very precious things, it is strongly recommended to download. Thanks to the open-source authors
Platform: |
Size: 109051 |
Author: 吴承英 |
Hits:
Description: T-CMD 是一款用 C++ 编写的后门程序,网上已有 C++ 源码发布。
在本人学习 C++ 的时候,顺便把他翻译成了 Pascal 源码,突然感觉以前感到高深莫测的 C++ 也不那么可怕了。特贡献出来,给大家学习 C++ 和 Delphi 的时候,可以参考下代码之间的区别。-T-CMD C is a backdoor program preparation, online C source code has been released. In my learning C, the way he translated into Pascal source, suddenly feeling was previously inscrutable C not so terrible. Special contributions, and for everyone to learn C and Delphi, under the code can refer to the distinction between.
Platform: |
Size: 17042 |
Author: zesfl |
Hits:
Description: 很经典的后门木马,功能就不用多说了吧,WOLF9-classic backdoor Trojan, functions on the fact the bar, WOLF9
Platform: |
Size: 381652 |
Author: 金属 |
Hits:
Description: 一个简单的反向后门代码列子,对于初学网络编程的朋友可能会有些帮助.-A simple reverse backdoor the code Liezi for the beginner of network programming of friends may be helpful.
Platform: |
Size: 1024 |
Author: enjoypudn |
Hits:
Description: unix后门与踪迹隐藏,这是搞渗透测试的基本文章,分享一下.-unix backdoor, traces hidden, which is to carry out penetration testing, and share.
Platform: |
Size: 299008 |
Author: zzaaqqss |
Hits:
Description: 它插入Explorer.exe服务启动,并且恢复sst过主动拦截防御。
使用了内核驱动程序,bindshell后门功能,以及下载者功能。 -Insert it into the Explorer.exe service starts, and restored sst active interceptor defense. Using the kernel driver, bindshell backdoor functionality, as well as those who download.
Platform: |
Size: 225280 |
Author: 李丽 |
Hits:
Description: 内核级后门代码.它插入Explorer.exe服务启动,并且恢复sst过主动拦截防御。使用了内核驱动程序,bindshell后门功能,以及下载者功能。-Kernel-level backdoor code it into the Explorer.exe service starts, and restore their own initiative to intercept sst defense. Using a kernel driver, bindshell backdoor functionality, as well as those who download capabilities.
Platform: |
Size: 259072 |
Author: 周彬 |
Hits:
Description: 自己写的第一个后门,就是返回CMDSHE-the first backdoor
Platform: |
Size: 208896 |
Author: snailwws |
Hits:
Description: 高仿shift后门程序源码,运行后可以利用这个编写后的工具添加账户,超级仿真后门-High imitation shift backdoor source code, running can use this tool to add after the preparation of the accounts, super simulation backdoor
Platform: |
Size: 122880 |
Author: 岳飞 |
Hits:
Description: 一个简单的网络Windows后门程序
仅供参考,不要用做他图
-one simple backdoor example
Platform: |
Size: 1527808 |
Author: 王思 |
Hits:
«
1
2
3
45
6
7
8
9
10
...
21
»