搜索资源列表
SysCommander_Source
- vb6版本的pchunter 3个驱动文件在res里 作者:cyycoish-vb6 version pchunter 3 drives inside of res file The author: cyycoish
Ring3
- 类似PChunter的内核工具。本工具是应用层的源码。适合内核新手-Similar PChunter core tools. This tool is the source application layer. Suitable for novice kernel
Killer
- Killer.sys用DriverMonitor加载,KillerIoCTL.exe是通信程序。输入ProcessID结束进程 可终止卡巴,毒霸,360,冰刃,PowerTool,PcHunter等。 果然不能终止江民,在PsLookupProcessByProcessId()这步读取进程的EProcess失败,想必江民在这里挂了钩。 下一步准备搜索PsLookupProcessByProcessId恢复钩子试试
PCHunter_free
- 1.进程、线程、进程模块、进程窗口、进程内存信息查看,杀进程、杀线程、卸载模块等功能 2.内核驱动模块查看,支持内核驱动模块的内存拷贝 3.SSDT、Shadow SSDT、FSD、KBD、TCPIP、Classpnp、Atapi、Acpi、SCSI、IDT、GDT信息查看,并能检测和恢复ssdt hook和inline hook 4.CreateProcess、CreateThread、LoadImage、CmpCallback
PCHunter
- 可以透视无爱是滴撒谎蒂萨皇帝sadhis啊好的撒(Perspectivesadsadsadsad)
Windows-Kernel-Explorer-master
- Windows Kernel Explorer (you can simply call it as "WKE") is a free but powerful Windows kernel research tool. It supports from Windows XP to Windows 10, 32-bit and 64-bit. Compare to popular tools (such as WIN