-
这篇文档是在Windows NT操作系统下隐藏对象、文件、服务、进程等的技术。这种方法是基于Windows API函数的挂钩。 这篇文章中所描述的技术都是从我写...
这篇文档是在Windows NT操作系统下隐藏对象、文件、服务、进程等的技术。这种方法是基于Windows API函数的挂钩。 这篇文章中所描述的技术都是从我写rootkit的研究成果,所以它能写rootkit更有效果并且更简单。这里也同样包括了我的实践。 在这篇文档中隐藏对象意味着改变某些用来命名这些对象的系统函数,使它们将忽略这些对象的名字。这样一来我们改动的那些函数的返回值表示这些对象根本就不存在。 最基本的方法(除去少数不同的)是我们用原始的参数调用原始的函数,然后我们改变它们的输出。 在这篇文章里将描述隐藏文件、进程、注册表键和键值、系统服务和驱动、分配的内存还有句柄。-This document is in the Windows NT operating system hidden objects, documents, services, process technology. This method is based on the Windows API function link. This article describes techniques are, I wrote rootkit from the results of research, so it was rootkit more effective and more simple. Here, too, including my practice. In this document hidden object means certain changes to these objects naming system functions so that they will ignore these objects by name. So we change those functions return values, said these objects simply do not exist. The most basic method (excluding a few different) is that we should call the original parameters of the original function, and then we change their
- 2022-03-07 17:00:50下载
- 积分:1
-
An application
一个应用级的键盘钩子程序,简单实用。是在应用级实现的-An application-level keyboard hook procedure, simple and practical. Is realized in the application-level
- 2022-11-13 12:55:03下载
- 积分:1
-
windows下一种反动态跟踪的方法
windows下一种反动态跟踪的方法-windows under a dynamic- tracking method
- 2022-06-11 13:01:00下载
- 积分:1
-
该程序实现了在系统的对话框上加按钮,比如在资源管理器中添加文件大小列。...
该程序实现了在系统的对话框上加按钮,比如在资源管理器中添加文件大小列。-The program implements the system add button on the dialog box, such as Explorer, add the file size of the column.
- 2023-06-25 21:20:04下载
- 积分:1
-
目录遍历,每发现一个文件提供处理函数,方便遍历中的处理
目录遍历,每发现一个文件提供处理函数,方便遍历中的处理-Directory traversal, each found in a document processing function to facilitate the traversal of the treatment
- 2023-06-12 22:40:03下载
- 积分:1
-
Fffff were dynamic, such as increased control 1.0.rar
如fffff名动态增加控件1.0.rar-Fffff were dynamic, such as increased control 1.0.rar
- 2022-02-14 17:56:09下载
- 积分:1
-
delphi关于磁卡读写器的、密码键盘读写卡操作
delphi关于磁卡读写器的、密码键盘读写卡操作-delphi on the magnetic card reader, and a password to operate the keyboard card reader
- 2023-01-24 08:05:03下载
- 积分:1
-
屏幕取词完全delphi实现代码
屏幕取词完全delphi实现代码-Capture Characters from Screen fully realize code
- 2022-03-22 23:26:48下载
- 积分:1
-
基于对话框的MFC程序,有启动按钮和停止按钮用于控制动态条的静动...
基于对话框的MFC程序,有启动按钮和停止按钮用于控制动态条的静动-MFC dialog-based procedures, start and stop button button for dynamic control of the static and dynamic
- 2022-11-29 21:35:04下载
- 积分:1
-
这个程序可恢复在Activate Driectory下不小心删除的用户账户和组账户....
这个程序可恢复在Activate Driectory下不小心删除的用户账户和组账户.-the process to resume under the Activate Driectory careful not to delete user accounts and group accounts.
- 2022-01-26 00:52:40下载
- 积分:1
