-
这篇文档是在Windows NT操作系统下隐藏对象、文件、服务、进程等的技术。这种方法是基于Windows API函数的挂钩。 这篇文章中所描述的技术都是从我写...
这篇文档是在Windows NT操作系统下隐藏对象、文件、服务、进程等的技术。这种方法是基于Windows API函数的挂钩。 这篇文章中所描述的技术都是从我写rootkit的研究成果,所以它能写rootkit更有效果并且更简单。这里也同样包括了我的实践。 在这篇文档中隐藏对象意味着改变某些用来命名这些对象的系统函数,使它们将忽略这些对象的名字。这样一来我们改动的那些函数的返回值表示这些对象根本就不存在。 最基本的方法(除去少数不同的)是我们用原始的参数调用原始的函数,然后我们改变它们的输出。 在这篇文章里将描述隐藏文件、进程、注册表键和键值、系统服务和驱动、分配的内存还有句柄。-This document is in the Windows NT operating system hidden objects, documents, services, process technology. This method is based on the Windows API function link. This article describes techniques are, I wrote rootkit from the results of research, so it was rootkit more effective and more simple. Here, too, including my practice. In this document hidden object means certain changes to these objects naming system functions so that they will ignore these objects by name. So we change those functions return values, said these objects simply do not exist. The most basic method (excluding a few different) is that we should call the original parameters of the original function, and then we change their
- 2022-03-07 17:00:50下载
- 积分:1
-
此程序利用无头结节链表实现完成对每个人先后出队的顺序的功能...
此程序利用无头结节链表实现完成对每个人先后出队的顺序的功能-This process used to achieve the completion of the list without a head node has a team for each individual function of the order of
- 2023-03-13 20:05:04下载
- 积分:1
-
包括源程序,browseinfo,browseui,comctl32,Comdlg32,CPL,hhctrl,探索…
include source of applets,browseinfo,browseui,comctl32,comdlg32,cpl,hhctrl,explorer,iexplore,scrnsave,shdocvw,shell32,shlwapi
- 2022-01-24 15:48:52下载
- 积分:1
-
API Spy tool which will track all system/api calles made in the application.
API Spy tool which will track all system/api calles made in the application.
- 2022-03-11 14:10:16下载
- 积分:1
-
自己用VB编的一个小程序,可以实现悬浮的窗体。
自己用VB编的一个小程序,可以实现悬浮的窗体。-their VB series with a small procedure, the suspension can be achieved Form.
- 2023-07-04 08:10:04下载
- 积分:1
-
FindDllVersion自动查找版本号
FindDllVersion自动查找版本号-FindDllVersion automatically find the version number
- 2022-08-13 19:45:13下载
- 积分:1
-
access to system information, is a VB.NET programming, hopes and suggestions.
获取系统信息,是一个VB。NET的程序设计,希望指教.-access to system information, is a VB.NET programming, hopes and suggestions.
- 2023-02-17 08:15:04下载
- 积分:1
-
有关M8引导区应用,里面有源程序,很不错的
有关M8引导区应用,里面有源程序,很不错的-guide the district M8 applications, a source inside, very good
- 2023-04-30 02:40:03下载
- 积分:1
-
"Windows programming secret," the most high
《Windows编程奥妙》,Windows编程最高阶图书,《Windwos高级编程》只能算进阶图书。该书作者是Boundcheck编写者之一。强力推荐。-"Windows programming secret," the most high-end Windows programming books, "Advanced Programming Windows" can only be described as intermediate books. The book"s author is Boundcheck one of the authors. Strongly recommended.
- 2022-06-19 02:12:54下载
- 积分:1
-
读通过物理驱动器的接口函数序列,可以直接使用。
通过API函数读取硬盘物理序列号可直接用于工控方面进行加密-read through the API function sequence of physical drives can be used directly for encryption IPC
- 2022-01-25 20:35:11下载
- 积分:1
