搜索资源列表
Rootkit
- 端口隐藏 主动防御-Hide port active defense
eeyebootroot
- 一个基于MBR的bootkit,主要功能是实现NDIS的后门技术,接受固定格式的数据包而实现主机红屏。-The eEye BootRootKit NDIS backdoor is a demonstration of boot-time Windows kernel subversion technology. The assembly source code (ebrk.asm) was written for use with M
bootkit
- 该BOOTKIT是基于NTLDR的文件型BOOTKIT。NTLDR是最接近内核的,而且对它做HOOK,可以避免编写针对各种类型外设的代码,提高通用性。-The BOOTKIT is based on the NTLDR file type BOOTKIT. NTLDR is the closest to the kernel, but it did HOOK, to avoid the preparation of the code f
showIDT
- R3下显示 IDT , IDT hook 研究必用-Under R3 shows IDT, IDT hook with the Study
bkit
- Bootkit 等同于rootkit的程序源代码-Bootkit equivalent rootkit program source code
BOOTKIT
- bootkit 系统启动引导盘源码 最近鬼影病毒相关源码(说明不专业……)
code_NTLDR
- inghu 同志的《一种基于NTLDR的BOOTKIT──原理及实现》文中的代码,小弟把它整了出来,并成功进行了实验。如有侵权,请通知-inghu comrades " NTLDR based on the BOOTKIT ─ ─ principle and implementation of" the text in the code, little brother out of it whole, and succ
paper
- Stoned Bootkit StonedBootkit是一种探索性的科学Bootkit,能够在Windows系统启动之前加载并且在内存中驻留。因此,Stoned可以在Windows系统内核之外执行并且能够得到整个系统的控制权。这样可以是用户重新获取系统的完整控制权,而在Vista系统中完整的控制权因为驱动程序的签名而受到限制。
c
- 机器狗穿还原完整可编译源代码,这个东西确实可以穿透还原.-Robot Dog wear to restore integrity to compile the source code, that can really penetrate the restore.
Sinowal_Bootkit
- Sinowal Bootkit源码 不过我试着编译+填充分区表+填充原始MBR到63扇区后写到硬盘无法正常引导~初步估计是Bootloader的问题。 我这没bochs 没法调试 不知道咋回事 有条件的自己调调看吧-Sinowal Bootkit source, but I try to compile+ fill+ fill original MBR partition table to write the hard disk
Sinowal
- 一个bootkit,对于喜欢玩bootkit的朋友值得下载,学习学习。-code for bootkit,you can download it
Bootkit-tophet
- 高级Bootkit-tophet.doc-Advanced Bootkit-tophet.doc
Bootkit_rev
- bootkit样本分析文章 纯汇编bootkit,32位保护模式下的。
bootkit
- 一个bootkit小程序,在开机的时候path内核来执行自己的代码,对研究磁盘结构,数据还原,系统启动内核有帮助-It has several features such as 1) It s very small.The basic fr a mework is just about 100 lines of assembly code.It supports 2000,XP,2003 2) It patches the
Bootkit-full-version-January-2010
- 这是Stoned Bootkit的第二个版本-Stoned Bootkit 2 (28.12.2009 17:37)- AN UNSIGNED CODE LOADER
Bootkit-tophet
- 介绍一种新型的Bootkit技术:Tophet-Introduce a new Bootkit technology: Tophet
Disinfector
- Disinfecter source code for Bootkit(all windows versions up to 7)
CodeGate2011.bootkit
- MBR Rootkit Source with Assembly-MBR Rootkit Source
BootKit_disinfector
- 本文揭示了一种新型的Bootkit技术:Tophet-This code and document is good stuff for studing BootKit technology