Location:
Search - rootkits
Search list
Description: How to develop a windows kernel based rootkit.
Platform: |
Size: 1197056 |
Author: fatuo |
Hits:
Description: Professional rootkit
Table of Contents
Professional Rootkits
Credits
Introduction
Chapter 1 - Tools
Chapter 2 - A Basic Rootkit
Chapter 3 - Kernel Hooks
Chapter 4 - User Hooks
Chapter 5 - I/O Processing
Chapter 6 - Communications
Chapter 7 - Filter Drivers
Chapter 8 - Key Logging
Chapter 9 - Concealment
Chapter 10 - E-mail Filtering
Chapter 11 - Installation Considerations
Chapter 12 - Ghost Tracker
Chapter 13 - Detecting Rootkits
Chapter 14 - Preventing Rootkits
Appendix A - Freeware
Index
-Table of Contents
Professional Rootkits
Credits
Introduction
Chapter 1- Tools
Chapter 2- A Basic Rootkit
Chapter 3- Kernel Hooks
Chapter 4- User Hooks
Chapter 5- I/O Processing
Chapter 6- Communications
Chapter 7- Filter Drivers
Chapter 8- Key Logging
Chapter 9- Concealment
Chapter 10- E-mail Filtering
Chapter 11- Installation Considerations
Chapter 12- Ghost Tracker
Chapter 13- Detecting Rootkits
Chapter 14- Preventing Rootkits
Appendix A- Freeware
Index
Platform: |
Size: 8218624 |
Author: Prochg |
Hits:
Description: Win32 Kernel Rootkits modify the behaviour of the system by Kernel Native API hooking. This technique is typically implemented by modifying the ServiceTable entries in the Service Descriptor Table (SDT). Such modification ensures that a replacement (hook) function installed by a rootkit is called prior to the original native API. The replacement function usually calls the original native API and modifies the output before returning the results to the user-space program. This technique allows kernel rootkits to hide files, processes, and to prevent process termination.
This proof-of-concept tool demonstrates the possibility of defeating such rootkits by removing Kernel Native APIs hooks and restoring the ServiceTable entries back to their original state.
Platform: |
Size: 8192 |
Author: Mimi |
Hits:
Description: 基于Windows内核层的Anti-Rootkits研究及其-Based on Windows kernel level and its Anti-Rootkits
Platform: |
Size: 990208 |
Author: cz601919 |
Hits:
Description: Collection of PDF - Windows Rootkits, Rootkit detection, Api Hooks, Code Obfuscation Et-Collection of PDF - Windows Rootkits, Rootkit detection, Api Hooks, Code Obfuscation Etcc..
Platform: |
Size: 7286784 |
Author: karnel32221 |
Hits:
Description: Welcome to Designing BSD Rootkits! This book will introduce you to the fundamentals of programming and developing kernelmode rootkits under the FreeBSD operating system.Through the “learn by example” method, I’ll detail the different techniques that a rootkit can employ so that you can learn what makes up rootkit code at its simplest level.
Platform: |
Size: 8473600 |
Author: Aoshi Hanate |
Hits:
Description: 这是rootkit的源代码,相当经典,对提高内核编程水平很有帮助-This is the rootkit source code, very classic, very helpful in improving the level of kernel programming
Platform: |
Size: 552960 |
Author: AndyBush |
Hits:
Description: Windows内核的安全防护源代码,收集有13款内核安全防护的工程。并且rootkits运用技术也不相同。-Windows kernel security protection the source code, and the collection of 13 kernel safety protection engineering. Rootkits and use technology is not the same.
Platform: |
Size: 552960 |
Author: 东东 |
Hits:
Description: ENYELKM rootkit, source code.
www.ossec.net/rootkits/enye-sec.php
Platform: |
Size: 9216 |
Author: fefafefa |
Hits:
Description: ENYELKM v1.2, source code
www.ossec.net/rootkits/enye-sec.php
Platform: |
Size: 12288 |
Author: fefafefa |
Hits:
Description: Nombre:
Portacelo
Versión:
0.7
Fecha de creación:
18/11/2002
Para versión de kernel:
Desconocido
Arquitectura:
Desconocido
Autor:
Desconocido
Tipo de rootkit:
Parece un LKM
Código disponible:
Si, aunque parece no estar completo.
Url/s de descarga:
98.15.202.89/RootKits/portacelo.zip
Platform: |
Size: 3500032 |
Author: fefafefa |
Hits:
Description: 简单介绍了rootkit,以及在Unix和Windows部分编写和检测,rootkit的未来展望-Introduced a simple and rootkits, as well as writing and testing part of Unix and Windows rootkit Future
Platform: |
Size: 64512 |
Author: 沈坤 |
Hits:
Description: professional .rootkits(Chinese version),为看不懂英文的同学量身订造-professional. rootkits, (Chinese version), tailored to watch the students do not know English!
Platform: |
Size: 5305344 |
Author: Cinvas |
Hits:
Description: BSD_ROOTKIT_设计
本书将介绍 FreeBSD 操作系统下内核模式 rootkit 编程和开发的基础知识。通过“跟着例子学习”的方法,我将详细介绍 rootkit 所采用的不同技术,这样你能在最底层上理解是什么构成了 rootkit。应该说明的是,这本书没有包含或分析任何“完全成形”的 rootkit 代码。实际上,本书主要关注的是如何使用一种技术,而不是使用技术来做什么事。-BSD_ROOTKIT_ design book will introduce the basics of the FreeBSD operating system kernel-mode rootkit programming and development. " Follow the example of learning" method, I will detail the different techniques used by rootkit, so that you can understand in the bottom of what constitutes the rootkits. It should be noted that, this book does not contain or analysis of any " fully formed" rootkit code. In fact, the book s main concern is how to use a technology, rather than using the technology to do anything.
Platform: |
Size: 594944 |
Author: rick |
Hits:
Description: Rootkits_Windows内核的安全防护是rootkits subverting the windows kernel的中文版本-Security Rootkits_Windows kernel rootkits, subverting the Chinese version of the Windows kernel
Platform: |
Size: 22306816 |
Author: silvins |
Hits:
Description: linux下的最新rootkit,用户层的,使用的是2.6.*下的ld-preload,在多个版本下面测试可用.-The latest rootkits under linux, the user layer, using the 2.6* ld-preload, available in multiple versions of the following tests.
Platform: |
Size: 10240 |
Author: zzaaqqss |
Hits:
Description: Rootkits--Windows内核的安全防护,对windows内核开发有很大的帮助-Rootkits- Windows kernel security, a lot of windows kernel development
Platform: |
Size: 1666048 |
Author: 侯月源 |
Hits:
Description: introduction to rootkits in windows
Platform: |
Size: 606208 |
Author: m456gt |
Hits:
Description: This paper introduces application level rootkit attacks on managed code
environments, enabling an attacker to change the language runtime implementation,
and to hide malicious code inside its core. The paper focuses on the .NET Framework,
but the concepts described in this paper can also be applied to other platforms such as
Java s JVM
Platform: |
Size: 327680 |
Author: pedala |
Hits:
Description: A comprehensive book about Rootkits (user and kernel) and visualization (virtual machine guest to host escape concepts)
Platform: |
Size: 5416960 |
Author: traff |
Hits: