inline_hooks_ntquerydirectoryfile Purpose: - Imple

Title: inline_hooks_ntquerydirectoryfile

Category:
File Operate
Tags:
[C/C++] [源码]
File Size:
7kb
Update:
2012-11-26
Downloads:
0 Times
Uploaded by:
k0b3.bryant08

Description: Purpose: - Implement remote code injection - Usermode hook (Ntdll->NtQueryDirectoryFile) Note: This is only POC that will hide file explorer.exe Hidding file via usermode code injection to explorer.exe You can restart explorer.exe to unhook

Downloaders recently: [More information of uploader k0b3.bryant08]

To Search: usermode explorer.exe hook

[keyloynohook] - not dependent on the hook DLL keylogger
[Ring3Enumprocess] - Ring3 a very practical example of the pr
[Com] - This is based on minifilter filter drive
[OllyDB] - OllyDbg detailed tutorial, step by step
[HookProtect] - 360 can not be the end of the process of
[rawinputKeylogger] - RawInput way to use a keylogger code, yo
[ProcessProtect] - The Ring0 achieve protection process, ac
[Remote-thread-injection] - Create a remote thread, no DLL is inject
[Ring0] - Hook NtQueryDirectoryFile hidden files i

File list (Check if you may need any files):

inline_ntquerydirectoryfile.h
inline_ntquerydirectoryfile.c

Main Category

SourceCode

Web Code

Develop Tools

Document

Other resource

Category

About site

CodeBus www.codebus.net