Rootkit Snow look inside four】【 topic of study an

Title: Rootkit

Category:
Windows Develop
Tags:
[WORD]
File Size:
5.8mb
Update:
2012-11-26
Downloads:
0 Times
Uploaded by:
netknight

Description: Snow look inside four】【Rootkit topic of study and research on the collection of article BY: script QQ: 175943462

Downloaders recently: [More information of uploader netknight]

To Search: rootkit

[IATroot] - IATroot Hook to one to table the IAT inp
[InsideWindowRootkits] - rootkit everyone you know that this info
[ROOTKIT_Ghost] - GHOST named under the Win32 source Rootk
[ROOTKITS] - ROOTKITS- Windows kernel security sourc
[BIOSRootkitjiancejishudeyanjiu] - BIOS Rootkit detection technology and it
[wangluoshiyanzhidaoshu] - This is Cow HIT Teacher computer network
[speeddial] - How to draw car the speed dial
[Demo] - GIS galaxy system read the geographical
[trojan] - Byshell1.09.rar GetOS.rar Gh0st RAT Bet

File list (Check if you may need any files):

Filename Size Date
【专题四】Rootkit的学习与研究
.............................\Read me.txt
.............................\Rootkit
.............................\.......\1。 内核hook
.............................\.......\............\1）object hook
.............................\.......\............\..............\1）object hook.doc
.............................\.......\............\2）ssdt hook
.............................\.......\............\............\2）ssdt hook.doc
.............................\.......\............\............\SSDT Hook的妙用－对抗ring0 inline hook .doc
.............................\.......\............\............\swk0207.rar
.............................\.......\............\3）inline-hook
.............................\.......\............\..............\360SuperKill学习之--恢复FSD的IRP处理函数.doc
.............................\.......\............\..............\3）inline-hook.doc
.............................\.......\............\..............\cnnic.rar
.............................\.......\............\..............\ExpLookupHandleTableEntry.rar
.............................\.......\............\..............\ExpLookupHandleTableEntry2.rar
.............................\.......\............\..............\kill_SecuritySoftware.rar
.............................\.......\............\..............\PsLookupProcessByProcessId执行流程学习笔记.doc
.............................\.......\............\..............\句柄啊，3层表啊，ExpLookupHandleTableEntry啊.doc
.............................\.......\............\..............\干掉KV 2008  Rising等大部分杀软.doc
.............................\.......\............\..............\搜索未导出的函数地址.doc
.............................\.......\............\4）idt hook
.............................\.......\............\...........\bhwin_keysniff.rar
.............................\.......\............\...........\IDT Hook .doc
.............................\.......\............\5）IRP hook
.............................\.......\............\...........\5）IRP hook.doc
.............................\.......\............\...........\irphook1.rar
.............................\.......\............\...........\irphook2.rar
.............................\.......\............\...........\irphook3.rar
.............................\.......\............\6）SYSENTER hook
.............................\.......\............\................\6）SYSENTER hook.doc
.............................\.......\............\................\SysEnterHook.rar
.............................\.......\............\7）IAT HOOK
.............................\.......\............\...........\7）IAT HOOK.doc
.............................\.......\............\...........\HybridHook.rar
.............................\.......\............\...........\testtest.rar
.............................\.......\............\8）EAT HOOK
.............................\.......\............\...........\8）EAT HOOK.doc
.............................\.......\............\...........\利用导出表来禁止一些驱动程序的加载.doc
.............................\.......\............\...........\导出表钩子.rar
.............................\.......\2。保护模式篇章第一部分： ring3进ring0之门
.............................\.......\..........................................\1)通过调用门访问内核
.............................\.......\..........................................\....................\1)通过调用门访问内核.doc
.............................\.......\..........................................\....................\myCallGate.rar
.............................\.......\..........................................\....................\test.rar
.............................\.......\..........................................\2)通过中断门访问内核
.............................\.......\..........................................\....................\2)通过中断门访问内核.doc
.............................\.......\..........................................\....................\myIntGate.rar
.............................\.......\......................................

Main Category

SourceCode

Web Code

Develop Tools

Document

Other resource

Category

GUI Develop

Windows Kernel

WinSock-NDIS

Driver Develop

ADO-ODBC

GDI-Bitmap

CSharp

.net

Multimedia Develop

Communication

Shell api

ActiveX/DCOM/ATL

IME Develop

ISAPI-IE

Hook api

Screen saver

DirextX

Process-Thread

Console

File Operate

Printing program

Multi Monitor

DNA

Other

About site

CodeBus www.codebus.net

Filename	Size	Date
【专题四】Rootkit的学习与研究
.............................\Read me.txt
.............................\Rootkit
.............................\.......\1。内核hook
.............................\.......\............\1）object hook
.............................\.......\............\..............\1）object hook.doc
.............................\.......\............\2）ssdt hook
.............................\.......\............\............\2）ssdt hook.doc
.............................\.......\............\............\SSDT Hook的妙用－对抗ring0 inline hook .doc
.............................\.......\............\............\swk0207.rar
.............................\.......\............\3）inline-hook
.............................\.......\............\..............\360SuperKill学习之--恢复FSD的IRP处理函数.doc
.............................\.......\............\..............\3）inline-hook.doc
.............................\.......\............\..............\cnnic.rar
.............................\.......\............\..............\ExpLookupHandleTableEntry.rar
.............................\.......\............\..............\ExpLookupHandleTableEntry2.rar
.............................\.......\............\..............\kill_SecuritySoftware.rar
.............................\.......\............\..............\PsLookupProcessByProcessId执行流程学习笔记.doc
.............................\.......\............\..............\句柄啊，3层表啊，ExpLookupHandleTableEntry啊.doc
.............................\.......\............\..............\干掉KV 2008	Rising等大部分杀软.doc
.............................\.......\............\..............\搜索未导出的函数地址.doc
.............................\.......\............\4）idt hook
.............................\.......\............\...........\bhwin_keysniff.rar
.............................\.......\............\...........\IDT Hook .doc
.............................\.......\............\5）IRP hook
.............................\.......\............\...........\5）IRP hook.doc
.............................\.......\............\...........\irphook1.rar
.............................\.......\............\...........\irphook2.rar
.............................\.......\............\...........\irphook3.rar
.............................\.......\............\6）SYSENTER hook
.............................\.......\............\................\6）SYSENTER hook.doc
.............................\.......\............\................\SysEnterHook.rar
.............................\.......\............\7）IAT HOOK
.............................\.......\............\...........\7）IAT HOOK.doc
.............................\.......\............\...........\HybridHook.rar
.............................\.......\............\...........\testtest.rar
.............................\.......\............\8）EAT HOOK
.............................\.......\............\...........\8）EAT HOOK.doc
.............................\.......\............\...........\利用导出表来禁止一些驱动程序的加载.doc
.............................\.......\............\...........\导出表钩子.rar
.............................\.......\2。保护模式篇章第一部分： ring3进ring0之门
.............................\.......\..........................................\1)通过调用门访问内核
.............................\.......\..........................................\....................\1)通过调用门访问内核.doc
.............................\.......\..........................................\....................\myCallGate.rar
.............................\.......\..........................................\....................\test.rar
.............................\.......\..........................................\2)通过中断门访问内核
.............................\.......\..........................................\....................\2)通过中断门访问内核.doc
.............................\.......\..........................................\....................\myIntGate.rar
.............................\.......\......................................