文件名称:ShadowWalker1.0
介绍说明--下载内容均来自于网络,请自行研究使用
展示一个简单的实现,关于虚拟内存“钩子”和它的潜在应用的高级内核rootkits-Shadow Walker demonstrates a simple implementation of virtual memory "hooking" and it s potential application to advanced kernel rootkits.
(系统自动生成,下载前可以参看下载内容)
下载文件列表
Shadow Walker 1.0
.................\FU_Lite
.................\.......\bin
.................\.......\...\msdirectx.pdb
.................\.......\...\msdirectx.sys
.................\.......\src
.................\.......\...\MAKEFILE
.................\.......\...\ProcessName.c
.................\.......\...\ProcessName.h
.................\.......\...\Rootkit.c
.................\.......\...\Rootkit.h
.................\.......\...\SOURCES
.................\mmHook
.................\......\bin
.................\......\...\i386
.................\......\...\....\mmHook.idb
.................\......\...\....\mmHook.pdb
.................\......\...\....\mmHook.sys
.................\......\src
.................\......\...\bin
.................\......\...\...\i386
.................\......\...\buildfre.log
.................\......\...\buildfre_wnet_x86.log
.................\......\...\DriverEntry.cpp
.................\......\...\DriverEntry.h
.................\......\...\idtHook.cpp
.................\......\...\idtHook.h
.................\......\...\MAKEFILE
.................\......\...\mmHook.h
.................\......\...\mmHook_HighInterface.cpp
.................\......\...\mmHook_LowInterface.cpp
.................\......\...\mmHook_SupportRoutines.cpp
.................\......\...\module.cpp
.................\......\...\module.h
.................\......\...\obj
.................\......\...\...\_objects.mac
.................\......\...\objfre
.................\......\...\......\i386
.................\......\...\Protocol.txt
.................\......\...\SOURCES
.................\Shadow Walker - Release.txt
.................\FU_Lite
.................\.......\bin
.................\.......\...\msdirectx.pdb
.................\.......\...\msdirectx.sys
.................\.......\src
.................\.......\...\MAKEFILE
.................\.......\...\ProcessName.c
.................\.......\...\ProcessName.h
.................\.......\...\Rootkit.c
.................\.......\...\Rootkit.h
.................\.......\...\SOURCES
.................\mmHook
.................\......\bin
.................\......\...\i386
.................\......\...\....\mmHook.idb
.................\......\...\....\mmHook.pdb
.................\......\...\....\mmHook.sys
.................\......\src
.................\......\...\bin
.................\......\...\...\i386
.................\......\...\buildfre.log
.................\......\...\buildfre_wnet_x86.log
.................\......\...\DriverEntry.cpp
.................\......\...\DriverEntry.h
.................\......\...\idtHook.cpp
.................\......\...\idtHook.h
.................\......\...\MAKEFILE
.................\......\...\mmHook.h
.................\......\...\mmHook_HighInterface.cpp
.................\......\...\mmHook_LowInterface.cpp
.................\......\...\mmHook_SupportRoutines.cpp
.................\......\...\module.cpp
.................\......\...\module.h
.................\......\...\obj
.................\......\...\...\_objects.mac
.................\......\...\objfre
.................\......\...\......\i386
.................\......\...\Protocol.txt
.................\......\...\SOURCES
.................\Shadow Walker - Release.txt