Location:
Search - rootkit
Search list
Description: 利用挂钩线程调度链表来检测进程的代码。基本能查出当前所有Rootkit隐藏的进程。系统编程爱好者必下。-use of thread scheduling Chain link to the code detection process. Basic can be detected all current Rootkit hidden process. System programming enthusiasts certainly under.
Platform: |
Size: 492544 |
Author: 黄芸乐 |
Hits:
Description: 文件名:filemon4。34,文件过滤驱动,最新版的filemon源代码。Sysinternals版-File Name : filemon4. 34, the paper filter driver, the latest version of the filemon source code. Rootkit version
Platform: |
Size: 557056 |
Author: 唐佳斌 |
Hits:
Description: 检测windows下rootkit对文件的隐藏。some usermode overwrites first few bytes
of ZwQueryDirectoryFile and that trick will fail then :( So, you will
probably need a small database of the correct indexes for all Windows
versions-under rootkit detection windows of the hidden documents. Some usermode overwrites first few bytes of ZwQueryDirectoryFile and that trick will fail then : (So, you will probably need a small database of the correct indexes for all Windows versions
Platform: |
Size: 16384 |
Author: libo |
Hits:
Description: Knark is a kernel-based rootkit for Linux 2.2. 使用此工具可以获得root权限
-Knark is a kernel-based rootkit for Linux 2.2. Use of this tool can root
Platform: |
Size: 18432 |
Author: 夏洪他 |
Hits:
Description:
Recently I rewatched Joanna s HITB presentation video and I noticed she said that a rootkit leveraging a single byte modification is impossible! Well I think that was a little bold to say and in my opinion it doesn t seem that infeasible that a one byte modification can be leveraged to accomplish something useful.
-Recently I rewatched present Joanna s Box ation video and I noticed she said that a rootkit leveraging a single byte modification is impos quit! Well I think that was a little bold to say a nd in my opinion it doesn t seem that infeasible t hat a one byte modification can be leveraged to a ccomplish something useful.
Platform: |
Size: 3072 |
Author: inwing |
Hits:
Description: MicroRk - Very small usermode rootkit-MicroRk- Very small usermode rootkit
Platform: |
Size: 9216 |
Author: 二点 |
Hits:
Description: 驱动类 rootkit 修改端口显示-drive to amend the port category rootkit show
Platform: |
Size: 2048 |
Author: ll |
Hits:
Description: 驱动类 rootkit HOOK注册表读取-driven category rootkit HOOK read registry
Platform: |
Size: 6144 |
Author: ll |
Hits:
Description: delphi NT本地API单元 用delphi写rootkit方便了。-delphi NT local API module delphi write rootkit convenient.
Platform: |
Size: 157696 |
Author: 孙小武 |
Hits:
Description: 尔罗斯著名黑客写的rootkit,里面有很多rootkit技术可以学习-Jilin written by famous hacker rootkit, there are many rootkit technology learning
Platform: |
Size: 3354624 |
Author: 柳杨 |
Hits:
Description: windows rootkit,可以列举出内核驱动程序以及就可以把自己的.sys隐藏起来-windows rootkit. can be cited and kernel drivers will be able to own. sys hidden
Platform: |
Size: 2272256 |
Author: 柳杨 |
Hits:
Description: 演示不用DLL HookAPI
一个类似Rootkit隐藏文件的小程序-not demonstrated a similar DLL HookAPI Rootkit hidden small procedures
Platform: |
Size: 13312 |
Author: hke |
Hits:
Description: AFX Rootkit 2005 by Aphex
http://www.iamaphex.net
aphex@iamaphex.net
WARNING -> FOR WINDOWS NT/2000/XP/2003 ONLY!
This program patches Windows API to hide certain objects from being listed.
-AFX Rootkit 2005 by Krautrock http :// www.iamaphex.net aphex@iamaphex.net WARN ING-
Platform: |
Size: 437248 |
Author: 唐伯虎 |
Hits:
Description: rootkit 大家都知道吧,这个资料是最新的,想研究rootkit 技术的看看吧,我敢说这是最新的-rootkit everyone you know that this information is the latest, Study to look at the rootkit technology, and I dare say this is the latest
Platform: |
Size: 691200 |
Author: xinwanjiang |
Hits:
Description: 可在系统引导时工作的RootKit,较简单
1) It s very small.The basic framework is just about 100 lines of assembly code.It supports 2000,XP,2003
2) It patches the kernel at runtime(no files are patched on disk).(basic version has this code removed , so as others could understand it easily).
3) BOOT KIT is PXE-compatible.
4) It can even lead to first ever PXE virus
5)It also enables you to load other root kits if you have physical access(Normally root kits can only be loaded by the administrator)-the system can guide the work of Rootkit. simple 1) It's very small.The basic framework is jus t about 100 lines of assembly code.It supports 2 000, XP, 2003 2) It patches the kernel at runtime (no file 's are patched on disk). (basic version has this c ode removed. so as others could understand it easily). 3) BOO T KIT is PXE-compatible. 4) It can even lead to fi rst ever PXE virus 5) It also enables you to load o ther'isnt root kits if you have physical access (Norm ally root kits can only be loaded by the administ rator)
Platform: |
Size: 72704 |
Author: 诚然 |
Hits:
Description: 一个驱动上实现 无进程 无端口 无服务的简单rootkit-a driver on the achievement of a process without port services without the simple rootkit
Platform: |
Size: 90112 |
Author: |
Hits:
Description: Linux 下 的 rootkit 攻击,利用rootkit可以让攻击者用来隐藏自己的踪迹和保留root访问权限。-under Linux rootkit attacks, use rootkit could allow an attacker to hide their trail and retain root permissions.
Platform: |
Size: 323584 |
Author: Joe Zhao |
Hits:
Description: 有关RootKit的经典分析,涉及如何在windows操作系统下安装,控制RootKit。-the classical analysis, involving how the windows operating system installation, Rootkit control.
Platform: |
Size: 414720 |
Author: 王亮 |
Hits:
Description: 对了解和学习rootkit的同志,的确是一篇好动东!:-for understanding and learning rootkit comrades, is a hyperactive East! :
Platform: |
Size: 25600 |
Author: 刘用 |
Hits:
Description: 国外收集的多个hook代码
Let s talk about kernel and drivers
--- --- --- --- --- -----
Author: Holy_Father <holy_father@phreaker.net>
/ When you see the shadow,
think about the light that causes it /
Version: 1.0 english
Birthday: 27.08.2005
Home: http://www.hxdef.org, http://hxdef.net.ru,
http://hxdef.czweb.org, http://rootkit.host.sk-foreign collected more than hook code Let's talk about kernel and d rivers----------------------------------- Author : Holy_Father
Platform: |
Size: 263168 |
Author: 校风 |
Hits:
«
1
2
34
5
6
7
8
9
10
...
20
»