Location:
Search - 进程监视
Search list
Description: 代码包括了进程监视和键盘记录两方面的功能,是一款不错的黑客程序。-code including the process of monitoring and keylogging the two functions, is a true hacker program.
Platform: |
Size: 195130 |
Author: 特务 |
Hits:
Description: 对局域网内的计算机进行进程监控,可以强制关闭该计算机的进程。-right for the process control computer, the computer forced the closure of the process.
Platform: |
Size: 189705 |
Author: 八戒 |
Hits:
Description: vb实现的进程监视代码,可监视进程的创建,以及命令行和参数,对分析某些软件的机理有帮助。
Platform: |
Size: 9041 |
Author: baijianli |
Hits:
Description: 监视进程的时间,运行状态等信息的程序.(xp下请重新编译)-Monitor the process of time, running the procedures and other information. (Xp under please recompile)
Platform: |
Size: 99328 |
Author: 站长 |
Hits:
Description: windows用delphi监视进程运行-windows monitors the advancement with delphi to move
Platform: |
Size: 171008 |
Author: qiuwei |
Hits:
Description: sysinternal 上的一个进程监视工具的源代码-sysinternal of a process monitoring tools source code
Platform: |
Size: 5030912 |
Author: 宋刚 |
Hits:
Description: 网络端口进程监视器,作者为www.6663.net论坛坛主-Network port process monitors, author www.6663.net Forum Administrator
Platform: |
Size: 1362944 |
Author: |
Hits:
Description: 用PsSetCreateProcessNotifyRoutine,PsSetCreateThreadNotifyRoutine来进行进程线程监控我想大家已经都非常熟练了.sinister在<<编写进程/线程监视器>>一文中已经实现得很好了.前一段时间看到网上有人在研究监视远线程的文章,比较有意思.就写代码玩一玩.这之中就出现了一些问题.比方说直接用sinister的代码的话,是不能动态卸载的,因为他在安装了进线程监视函数后没有进行清除动作,造成在动态卸载时蓝屏,BUGCHECK为0x000000ce,错误码为:DRIVER_UNLOADED_WITHOUT_CANCELLING_PENDING_OPERATIONS.很显然,在驱动退出后,一些进线程操作仍然在访问原来的地址,造成出错.在XP后,微软给出了一个函数PsRemoveCreateThreadNotifyRoutine用来清除线程监视函数(清除进程监视的就是PsSetCreateProcessNotifyRoutine).我一直奇怪ICESWORD在2000中是怎么做到进线程监视的.后来才发现,在运行icesword后释放出一个detport.sys文件,然后一直在系统中存在着没有卸载掉.只是把它隐藏了而已^_^.这不是个好消息,难道我为了测试一个驱动,测试一次就得重启一次吗?呵呵,肯定不是啊,所以想办法搞定它.-with PsSetCreateProcessNotifyRoutine, PsSetCreateThreadNotifyRoutine thread to process control, I think we had a very skilled. Sinister In "<preparation process/thread monitors>" A text has been achieved in very good. Some time ago the Internet was seen in the surveillance study of the threads from article more interesting. Write playing with a code to play. on this issue, there have been some problems. For example, the direct use of sinister code, the dynamic is not unloaded, because he installed into threads without surveillance function after removal action, resulting in dynamic unloading blue screens, BUGCHECK to 0x000000ce, error code : DRIVER_UNLOADED _WITHOUT_CANCELLING_PENDING_OPERATIONS. It is clear that following the withdrawal of the drive, some threads are sti
Platform: |
Size: 7168 |
Author: 龙 |
Hits:
Description: 对局域网内的计算机进行进程监控,可以强制关闭该计算机的进程。-right for the process control computer, the computer forced the closure of the process.
Platform: |
Size: 189440 |
Author: 八戒 |
Hits:
Description: 代码包括了进程监视和键盘记录两方面的功能,是一款不错的黑客程序。-code including the process of monitoring and keylogging the two functions, is a true hacker program.
Platform: |
Size: 194560 |
Author: 特务 |
Hits:
Description: 在windows2000下面的一个进程监视驱动,可以监视所有进程的创建和关闭。使用了微软未公开的函数。-This is a proccess monitor driver for windows2000,it can monitor all proccess created or closed. This source code uses function not open to pulblic of microsoft!
Platform: |
Size: 5120 |
Author: 俞训峰 |
Hits:
Description: 老妖的程序,很不错
一、客户端
程序命名为Client。监视系统的运行,如发现系统中有“记事本”进程(notepad.exe)或者“计算器”进程(calc.exe),立即杀死(kill)该进程,并将该事件写入数据库;定期进行检查,每间隔1分钟,检查数据库,将尚未上传的事件记录上传至服务器端。
程序命名为Server。监听网络,一旦有客户端上传数据,立即从中提取事件信息,并在用户界面中以列表方式加以显示。-Laojiao procedures, a very good one, the client program called Client. Surveillance systems running, such as Discovery System are "Notepad" process (notepad.exe) or "calculator" process (calc.exe), immediately killing (kill) the process and the incident into databases; Periodic inspection, each one minute interval check database would not have been the case record upload to upload server. Procedures for naming Server. Monitoring network, once the client to upload data from the incident immediately from the information, and the user interface to a list to be revealed.
Platform: |
Size: 442368 |
Author: 虚名 |
Hits:
Description: Windows环境下系统进程监视及自动关机的实现 程序名称:SoundMan-Windows environment surveillance system and the process of achieving automatic shutdown procedures title : SoundMan
Platform: |
Size: 18432 |
Author: 远风 |
Hits:
Description: Delphi写的一个进程监视程序,能实时监视进程的活动,能自动结束木马病毒进程。-Delphi process of writing a surveillance procedures, real-time process monitoring activities, can automatically process the end of Trojan horse virus.
Platform: |
Size: 185344 |
Author: |
Hits:
Description: 老罗写的监视pe文件的程序,采用Debug API的技术进行调试监视进程的API调用,了解软件的行为-old Luo wrote the document pe surveillance procedures, Debug API using the technology for the surveillance process debugging API calls, understanding the behavior of software
Platform: |
Size: 99328 |
Author: 康康 |
Hits:
Description: 一个进程启动,停止以及监视其活动的小程序,当程序发生异常后,此程序可以自动启动,你要做的,就是把你要管理的程序加入到其管理列表,由其进行管理就可以了,这个程序不需要任何改动就可以直接拿来对你要启动但又会发生错误退出的程序进行管理。-脪 禄赂 枚 陆 酶 鲁 脤脝么 露 炉 拢 卢 脥 拢 脰 鹿 脪脭 录 掳 录 脿脢脫脝盲禄 卯 露 炉 渭脛脨 隆 鲁 脤脨貌 拢 卢 渭 卤 鲁 脤脨貌 垄 脡煤脪矛 鲁 拢 潞 贸 拢 卢
Platform: |
Size: 101376 |
Author: rohnaw |
Hits:
Description: 列举进程, 得到你想要的进程,可以做进程监视用-Enumeration process, the process of getting what you want, you can make the process of monitoring by
Platform: |
Size: 1024 |
Author: xmaker |
Hits:
Description: 提供进程监视[包括启动参数]
进程检测[包括启动参数]
网络连接检测
SSDT检测
BHO检测
IE插件检测
自启动项检测
-------程序部分[使用彩字显示]
包含TD2,PTTD,2个DLL使用方法
TD3驱动使用方法-To provide process monitoring [including start-up parameters] the process of testing [including startup parameter] Network Connection BHO detection SSDT Detection Detection Detection of IE plug-ins since the start of testing- the procedural part of [the use of color word shows that] contains TD2, PTTD, 2 months DLL use TD3 driver to use
Platform: |
Size: 432128 |
Author: zzn |
Hits:
Description: 关键进程监视+键盘记录器+自动邮件通知,十分简单的木马模型仅供参考-key process monitor and keyboard record and autoemail
Platform: |
Size: 904192 |
Author: leptonic |
Hits:
Description: 给所有运行程序生成缩略图,用于进程监视和查看-Generate thumbnails for all running programs for the process to monitor and view
Platform: |
Size: 13312 |
Author: quicksilver |
Hits:
« 12
3
4
5
6
7
8
9
10
...
13
»