Description: I m releasing my private ring3 rootkit "DarkFire" now. It s written in C#, source is included. Also there are the 4 examples, but you may also execute the source from VS if you don t trust exes...
Features:
* Hide Processes
* Hide Registry values
* Hide Registry keys
* Anti Sandbox for several sandboxes
- [hideme] - Rootkit, to hide the process from the sy
- [knark-0.59] - Knark is a kernel-based rootkit for Linu
- [SSDTHook] - Ring0 inline hook to deal with the basic
- [IsSandBox] - This source code is to check whether the
- [Rootkit] - This is a well-known irphook the kernel
- [ossec-hids-2.4.1.tar] - OSSEC is a scalable, multi-platform, ope
File list (Check if you may need any files):
src\DarkFire
...\........\DarkFire.cs
...\........\DarkFire.csproj
...\........\DarkFire.csproj.user
...\........\Properties
...\DarkFire.sln
...\DarkFire.suo
...\Example1
...\........\Example1.csproj
...\........\Program.cs
...\Example2
...\........\Example2.csproj
...\........\Program.cs
...\Example3
...\........\Example3.csproj
...\........\Program.cs
...\Example4
...\........\Example4.csproj
...\........\Program.cs
src
bin\DarkFire.dll
...\Example1.exe
...\Example2.exe
...\Example3.exe
...\Example4.exe
bin