登录
首页 » Visual C++ » KerHookDetect

KerHookDetect

于 2015-03-04 发布 文件大小:2358KB
0 303
下载积分: 1 下载次数: 32

代码说明:

  可以实现内核钩子的检测,分为应用层和驱动层,带源码(Can detect the kernel hooks, into the application layer and the driver layer, with source code)

文件列表:

内核钩子检测示例
................\代码说明.txt,3494,2014-10-23
................\应用层
................\......\应用层
................\......\......\Release
................\......\......\.......\SafeCheck.exe,264192,2010-09-07
................\......\......\SafeCheck

................\......\......\.........\bitmap2.bmp
................\......\......\.........\Dllhook.cpp,30924,2010-09-07
................\......\......\.........\Dllhook.h,408,2010-08-28
................\......\......\.........\DriProOther.sys,37632,2010-09-06
................\......\......\.........\Driver.cpp,6781,2010-09-07
................\......\......\.........\Driver.h,290,2010-08-18
................\......\......\.........\FilePrase.cpp,55026,2010-09-05
................\......\......\.........\FilePrase.h,22322,2010-09-03
................\......\......\.........\HookView.cpp,21776,2010-09-05
................\......\......\.........\HookView.h,3384,2010-08-18
................\......\......\.........\IDTAndKernel.cpp,27204,2010-09-07
................\......\......\.........\Ioctls.h,5501,2010-08-28
................\......\......\.........\KerHookSSDTIDT.sys,18944,2010-09-06
................\......\......\.........\LoadNtDriver.cpp,3720,2010-09-06
................\......\......\.........\LoadNtDriver.h,124,2010-09-06
................\......\......\.........\openfile.txt,4277,2010-08-19
................\......\......\.........\process.cpp,18813,2010-09-07
................\......\......\.........\process.h,1573,2010-08-28
................\......\......\.........\RAWSDTaddress.cpp,9856,2010-09-06
................\......\......\.........\RAWSDTaddress.H,28670,2010-09-03
................\......\......\.........\ReadMe.txt,1969,2010-05-26
................\......\......\.........\Resource.h,5248,2010-09-06
................\......\......\.........\SafeCheck.aps,160576,2010-09-06
................\......\......\.........\SafeCheck.cpp,65630,2010-09-07
................\......\......\.........\SafeCheck.h,94,2010-07-05

................\......\......\.........\SafeCheck.rc,8294,2010-09-06
................\......\......\.........\SafeCheck.vcproj,5794,2010-09-07
................\......\......\.........\SafeCheck.vcproj.ASM-1475037415F.asm.user,1427,2010-06-15
................\......\......\.........\SafeCheck.vcproj.ASM-KERNEL.asmkernel.user,1417,2010-07-01
................\......\......\.........\SafeCheck.vcproj.ASMKERNE-60DF6F.asm.user,1426,2010-09-07
................\......\......\.........\ShowOrHide.cpp,5851,2010-09-05
................\......\......\.........\ShowOrHide.h,576,2010-08-19
................\......\......\.........\SlickOS2.ssk,78515,2005-10-25

................\......\......\.........\stdafx.cpp,214,2010-05-26
................\......\......\.........\stdafx.h,423,2010-09-07
................\......\......\.........\targetver.h,1026,2010-05-26
................\......\......\.........\xde.c,16248,2010-08-23
................\......\......\.........\xde.h,8419,2010-08-27
................\......\......\.........\xde.vsprops,145,2010-08-20
................\......\......\.........\xdetbl.c,25607,2004-10-04
................\......\......\.........\内核钩子.doc,10240,2010-08-05
................\......\......\.........\函数特征.txt,1086,2010-08-27
................\......\......\.........\新建 文本文档.txt,5235,2010-07-29
................\......\......\SafeCheck.ncb,2067456,2014-10-27
................\......\......\SafeCheck.sln,893,2010-05-26
................\编译说明.txt,123,2014-10-23
................\运行文件夹
................\..........\DriProOther.sys,56960,2010-09-07
................\..........\KerHookSSDTIDT.sys,32640,2010-09-07
................\..........\SafeCheck.exe,264192,2010-09-07
................\驱动层
................\......\DriProOther
................\......\...........\buildchk_wxp_x86.log,4721,2010-09-07
................\......\...........\buildchk_wxp_x86.wrn,1018,2010-09-07
................\......\...........\buildfre_wxp_x86.log,4667,2010-09-07
................\......\...........\buildfre_wxp_x86.wrn,1018,2010-09-07
................\......\...........\DriProOther.cpp,139790,2010-09-07
................\......\...........\Driver.h,8460,2010-09-05
................\......\...........\EnumDriver.dsp,3449,2010-08-24
................\......\...........\EnumDriver.dsw,543,2010-08-24
................\......\...........\EnumDriver.ncb,50176,2010-08-24
................\......\...........\EnumDriver.plg,809,2010-08-24
................\......\...........\Ioctls.h,4057,2010-08-28
................\......\...........\MAKEFILE,59,2010-09-03
................\......\...........\objchk_wxp_x86
................\......\...........\..............\i386
................\......\...........\..............\....\driproother.obj,342179,2010-09-07
................\......\...........\..............\....\driproother.obj.oacr.root.x86chk.pft.xml,75529,2010-09-07
................\......\...........\..............\....\_objects.mac,267,2010-09-07
................\......\...........\objfre_wxp_x86
................\......\...........\..............\i386
................\......\...........\..............\....\driproother.obj,308027,2010-09-07
................\......\...........\..............\....\driproother.obj.oacr.root.x86fre.pft.xml,75529,2010-09-07
................\......\...........\..............\....\_objects.mac,267,2010-09-07
................\......\...........\pe.h,6514,2010-05-28
................\......\...........\SOURCES,88,2010-09-06
................\......\...........\Struct.h,1497,2010-07-05
................\......\...........\sys
................\......\...........\...\i386
................\......\...........\...\....\DriProOther.pdb,363520,2010-09-07
................\......\...........\...\....\DriProOther.sys,56960,2010-09-07
................\......\...........\x86 Checked Build Environment.lnk,855,2010-07-01
................\......\...........\x86 Free Build Environment.lnk,849,2010-07-01
................\......\...........\xde.c,16310,2010-04-01
................\......\...........\xde.h,8419,2010-03-22
................\......\...........\xdetbl.c,25607,2004-10-04
................\......\...........\判断版本的.txt,35718,2010-08-27
................\......\...........\文档.txt,24950,2010-06-25
................\......\...........\新建 文本文档 (2).txt,3402,2010-09-06
................\......\...........\新建 文本文档 (3).txt,3707,2010-08-29

下载说明:请别用迅雷下载,失败请重下,重下不扣分!

发表评论

0 个回复

  • Disable-key-combination
    本示例程序演示了如何在子窗体中禁止切换组合键和关闭组合键功能。(This sample program demonstrates how to disable the subform combination of keys on and off switching function key combinations.)
    2013-07-17 22:24:36下载
    积分:1
  • P3-315
    先从键盘输入一个文本文件的文件名(约定:字符数≤127字节,可含路径)和一个字符串(约定:字符数≤20字节,其中不含空格、TAB等,后面称之为Str),再在屏幕上显示该文件的内容。要求显示完内容后,在屏幕上输出文件的行数(行之间以’ ’为分隔、每行的长度不定但均≤200个字节)、字符串Str在文件中第1次出现的行号和最后一次出现的行号(查找时不区分大小写、不跨行查找,若未找到,则行号显示为-1)。 (Start with the keyboard input of a text file name (convention: the number of characters to ≤ 127 bytes, and can contain the path) and a string (convention: the number of characters ≤ 20 bytes, which contain spaces, TAB, followed by call Str), the contents of the file is displayed on the screen. Requests display content on the screen the number of rows of the output file (the line between ' n' separated, each line has a variable length but ≤ 200 bytes) string Str file a (find the line number and the last line number is not case-sensitive, cross-bank does not find, If you do not find the line number is displayed as-1).)
    2012-06-30 12:33:52下载
    积分:1
  • hookMsgMonitor
    钩子编程的好例子,钩子的种类好多,这个事cbt钩子,用来监视程序端的改变。(Programming hook a good example of the type of hook a lot, this thing cbt hook, used to monitor changes in client program.)
    2009-04-27 10:17:27下载
    积分:1
  • QQ美女找茬 CQQFind
    QQ美女找茬 作弊器 在windows XP下测试通过。(QQ beauty finding fault cheating device)
    2020-06-26 00:40:02下载
    积分:1
  • MetaHook-Plus-0.3
    Half-Life (GoldSrc) 客户端插件扩展。(Half-Life Client Plugins Extension Developed by the metahook are a group of lovers of Counter-Strike, he can extend the functionality of the game, making the game more rich in Sth)
    2013-08-19 16:41:02下载
    积分:1
  • abc
    VB键盘记录器(无Dll版),有需要的就下载吧。(VB keyloggers (no Dll version), there is a need to download it.)
    2013-08-26 13:28:35下载
    积分:1
  • FIREDLL
    使用windows Hook,监视IE或其他浏览器的地址栏,发现有www或http字样的,则更改这些url,使之不能访问相应的url(IEwindows HookIEwindows)
    2015-05-27 18:47:08下载
    积分:1
  • FormatIO
    强制删除文件,无注入无驱动无hook,原理就是查找文件的锁定句柄,然后关闭句柄。(Forced to delete the file, no injection no driver no hook, the principle is to find the file lock handle, and then close the handle.)
    2017-03-08 23:18:04下载
    积分:1
  • PassStarter
    This is example how to load a dll library and prepare for hook.
    2013-12-25 07:46:25下载
    积分:1
  • pwdspy
    PasswordSpy is a program to reveal passwords in other programs. It uses Windows Hooks to inject its code into other processes in order to reveal the password. It works by taking advantage of a security hole in Windows.
    2010-06-11 01:24:11下载
    积分:1
  • 696516资源总数
  • 106914会员总数
  • 0今日下载