文件名称:Real-time-process-monitoring
- 所属分类:
- 钩子与API截获
- 资源属性:
- [Windows] [Visual C] [源码]
- 上传时间:
- 2013-04-15
- 文件大小:
- 127kb
- 下载次数:
- 0次
- 提 供 者:
- 孙*
- 相关连接:
- 无
- 下载说明:
- 别用迅雷下载,失败请重下,重下不扣分!
介绍说明--下载内容均来自于网络,请自行研究使用
通过hook技术实现对进程的实时监控,是一个很好的学习hook技术的例子-Hook technology to achieve real-time monitoring of the process, is a good example of learning and hook technology
(系统自动生成,下载前可以参看下载内容)
下载文件列表
Hook ObCreateObject 实时监控进程创建\Bin\CreateProcessFilters.sys
....................................\...\DrvLoader.exe
....................................\CreateProcessFilters\CreateProcessFilters.sln
....................................\....................\CreateProcessFilters.suo
....................................\....................\dirver\common.h
....................................\....................\......\control.h
....................................\....................\......\dbghelp.h
....................................\....................\......\dirver.vcxproj
....................................\....................\......\dirver.vcxproj.filters
....................................\....................\......\dirver.vcxproj.user
....................................\....................\......\DirverProperty.props
....................................\....................\......\driver.c
....................................\....................\......\driver.h
....................................\....................\......\drvversion.aps
....................................\....................\......\drvversion.rc
....................................\....................\......\inlineObCreateObject.h
....................................\....................\......\makefile
....................................\....................\......\mybuild.bat
....................................\....................\......\Normal.props
....................................\....................\......\Release\driver.obj
....................................\....................\......\.......\drvversion.res
....................................\....................\......\.......\vc100.pdb
....................................\....................\......\resource.h
....................................\....................\......\sources
....................................\....................\Release\CreateProcessFilters.sys
....................................\....................\.......\DrvLoader.exe
....................................\....................\.ing3\DrvLoader\DrvLoader.cpp
....................................\....................\.....\.........\DrvLoader.dsp
....................................\....................\.....\.........\DrvLoader.dsw
....................................\....................\.....\.........\DrvLoader.opt
....................................\....................\.....\.........\DrvLoader.plg
....................................\....................\.....\.........\Instdrv.cpp
....................................\....................\.....\.........\Instdrv.h
....................................\....................\.....\.........\Release\DrvLoader.obj
....................................\....................\.....\.........\.......\Instdrv.obj
....................................\....................\.....\.........\.......\vc60.idb
....................................\....................\.....\.........\Release
....................................\....................\dirver\Release
....................................\....................\Ring3\DrvLoader
....................................\....................\dirver
....................................\....................\Release
....................................\....................\Ring3
....................................\....................\ipch
....................................\Bin
....................................\CreateProcessFilters
Hook ObCreateObject 实时监控进程创建