Welcome![Sign In][Sign Up]
Front-page it | Collect it | [中国-简体中文]
FAQ Fav
Location:
Search - rootkit

Search list

[VC/MFCSubvertingtheWindowKernel

Description: 全面讲解Rootkit的安全防护的书籍~ 国外经典著作~-Rootkit comprehensive security on the books ~ foreign classics ~
Platform: | Size: 1666048 | Author: 小华子 | Hits:

[Windows Developrootkit

Description: 这是关于Windows内核编程的一些源程序,适合初学者,是技术含量较高的资料了-This is about a number of programming Windows kernel source code, suitable for beginners, is the technical content of information available to the higher
Platform: | Size: 1255424 | Author: dj | Hits:

[Driver Develophxdef100r

Description: Kernel rootkit hacker defender
Platform: | Size: 242688 | Author: kernel lover | Hits:

[Software Engineeringchpie_smm_keysniff_ENG

Description: Rootkit in english upload by benina
Platform: | Size: 349184 | Author: benina | Hits:

[Software EngineeringPatchfinder_w2k_2.11

Description: Rootkit upload by benina rea
Platform: | Size: 105472 | Author: benina | Hits:

[Hook apiBIOSRootkitIVTHook

Description: BIOS Rootkit为了达到控制系统流程的目的,一般会采用Hook IVT,即Hook中断向量表的方式来实现。IVT Hook的实现和检测,涉及许多具体的问题。因此,我把IVT Hook分几部分来进行讨论。在本节和下面几节中,我们将讨论如何借助Bochs的帮助来查看原始IVT、分析IVT Hook情况以及在此基础上写一个简单的IVT检测程序。闲话少说,这就开始我们的旅程吧-BIOS Rootkit process control system in order to achieve the purpose, would generally be applied Hook IVT, ie interruption Hook way to achieve scale. IVT Hook realization and testing, involving a number of specific issues. Therefore, I have several parts IVT Hook for discussion. In this section and the following sections, we will discuss how to help with Bochs to see the original IVT, analysis of IVT Hook, as well as written on the basis of a simple testing procedure IVT. Bet, which it began our journey
Platform: | Size: 359424 | Author: 王小明 | Hits:

[Hook apishv4.tar

Description: Source code for SHV4 rootkit. Its old version of the rootkit but very good for study purposes
Platform: | Size: 463872 | Author: mir | Hits:

[Windows Developrootkit_hide_process

Description: Rootkit that hide process selected.
Platform: | Size: 3072 | Author: NightFox | Hits:

[Hook apichkrootkit.tar

Description: rootkit is a tool to locally check for signs of a rootkit.
Platform: | Size: 37888 | Author: mikhus | Hits:

[VC/MFCinside_windows_rootkits

Description: 见包名字就知道是什么了哦,对ENG好的人来说就是好东西-Although they have been around for quite some time, rootkits have become somewhat of a buzzword in the security industry over the past year. While rootkits have traditionally been used by sophisticated attackers to hide their presence on compromised machines, recent worms, viruses, and trojans have started using them to complicate efforts to detect and clean infected machines. Microsoft recently reported that over twenty percent of the malware found by their malicious code removal tool on Windows XP Service Pack 2 machines contained rootkit technology [1]. By hiding the infection, rootkits allow the malicious software to remain on the system for a longer period of time. This enables the malicious software to steal more information, send out more spam, launch more DDOS attacks, and ultimately make more money for whoever is controlling it. Even some commercial software has adopted techniques used by rootkits for protection. The most famous example of this is the Sony Digital Ri
Platform: | Size: 691200 | Author: fdef | Hits:

[Internet-NetworkSpamMon_src

Description: "spamMonitor is a small program to detect if your computer is sending spams, in case of a virus/rootkit infection. It displays an alert each time an outgoing SMTP connection is established from your PC and gives you all details about such a connection (program, PID, remote IP...)."
Platform: | Size: 27648 | Author: netcat | Hits:

[Hook apichipset_rootkit

Description: 国外牛人写的。这是一个在XP虚拟机中运行的SMM rootkit,由于SMM的硬件相关性,该程序只能用于装了XP多核的虚拟机上,不过对于这种新兴的chipset级别的rootkit有很高的研究价值。毕竟在黑帽大会上波兰那两个黑客没把源码公布。-SMM Rootkit chipset-level rootkit
Platform: | Size: 242688 | Author: perfectLC | Hits:

[OS programsvv-2.3-bin

Description: Detector rootkit kernel mode ring0 sys driver
Platform: | Size: 56320 | Author: Zosenko | Hits:

[OS programCsrssWalker

Description: 在Csrss.exe中,保存着所有Win32子系统进程的进程信息,这些信息以链表的形式保存。 正常情况下,每一个新创建的进程都会通知Csrss.exe,Csrss.exe接收这些信息然后保存起来,所以遍历这个链表就可以得到所有Win32子系统进程的信息。首先就是找链表头了,链表头为CsrssRootProcess,在CSRSRV.DLL导出的函数中有对CsrssRootProcess的操作,因此可以通过CSRSRV.DLL的导出函数找到CsrssRootProcess。 通过遍历这个链表就能取得进程信息-using csrss as rootkit detector, full source code included
Platform: | Size: 36864 | Author: Charles Lee | Hits:

[Windows DevelopRegmon

Description: 一个已经停止开发的软件,但是里面有一部分与ROOTKIT的内容可以参考下。有驱动的加入。-A software has stopped, but there are ROOTKIT part of the content and can refer to the next. Have driven to join.
Platform: | Size: 151552 | Author: 潇湘 | Hits:

[Hook apiZion

Description: Rootkit实现,做技术探讨,非常具有参考价值,请不要拿来做非法的事-Rootkit achieve, so the technical discussion is very valuable, please do not use to do illegal things
Platform: | Size: 287744 | Author: 李美靖 | Hits:

[Windows Develophideprocess

Description: windows 系统下 隐藏 进程的代码 此代码使用了rootkit技术-windows system code to hide the process of the code used rootkit technology
Platform: | Size: 3072 | Author: 雪妖 | Hits:

[Hook apiRootkit

Description:
Platform: | Size: 589824 | Author: 莫名 | Hits:

[Hook apiHe4Boot

Description: 俄罗斯的文件隐藏rootkit,用到了Boot启动技术-Russia' s documents hidden rootkit, used to start the Boot Technology
Platform: | Size: 32768 | Author: xwaeeex | Hits:

[Software Engineeringcmcark_cw.0.2.2.9.12

Description: A rootkit detector that allows you to remove the SSDT hooks maden in the OS kernel.
Platform: | Size: 1481728 | Author: pedrailla | Hits:
« 1 2 3 4 5 67 8 9 10 11 ... 20 »

CodeBus www.codebus.net