Location:
Search - Anti HOOK
Search list
Description: this is anti hook code -this is anti hook code
Platform: |
Size: 37037 |
Author: jaskell |
Hits:
Description: PHunter的源代码,便于学习各种Hook和Anti-Hook的方法
Platform: |
Size: 283190 |
Author: inking |
Hits:
Description: 采用远程线程查看星号密码,支持查看某些采用了 anti 技术的编辑框。大部分网游就是因为这样所以用传统的键盘HOOK技术取不到密码。这份代码提供了完整的解决方案。用处嘛?还用多说?-distance threads View asterisk password used to support the view of some anti technical editor box. Most online games is the reason why the traditional keyboard HOOK fail to obtain passwords. This code provides a complete solution. Useful incorrect? Also used to say?
Platform: |
Size: 6144 |
Author: |
Hits:
Description: 申明:
本软件仅供学习使用。
如用本程序做非法用途后果自负,与作者无关!!!
QQ:175111923
软件简介:
2006年7月15日
主要功能:
1.屏幕监视/控制。
2.CMD命令行
3.摄象头
4.文件管理
5.进程管理
6.键盘记录
其中键盘记录,没有使用钩子记录,为了防止一些杀毒软件阻止安装钩子
虽然没有钩子,但是对于一般的密码窗口,IE窗口也依然能准确记录(包括粘贴).
2006.8.19
由于忙于工作,忙于学习.没时间在继续开发了,把代码发给大家继续更
新
编译前把工程设置成 Unicode
VipShell 是服务端代码
VipClient 客户端代码
把纯真IP数据库 和 客户端放在一起 即可显示物理地址
有问题请联系 QQ:175111923 M
群 :23204130
-declared : This software is for learning. If using this procedure done for illicit purposes responsible for any consequences, have nothing to do with the author! ! ! QQ : 175111923 software description : July 15, 2006 main functions : 1. screen monitor/control. 2.CMD command line 3. Placing four. Document management 5. Process management 6. Keyboard records documenting the keyboard, Hook record is not used, in order to prevent anti-virus software to prevent the installation of the hook Although no hook, But for the general password window, IE window still accurate records (including paste). 2006.8.19 as busy work, busy learning. In no time to continue to develop, code or to continue to update you before compiler works set to Unicode VipShell-generation services Codes VipClient client cod
Platform: |
Size: 549888 |
Author: |
Hits:
Description: this is anti hook code -this is anti hook code
Platform: |
Size: 48128 |
Author: jaskell |
Hits:
Description: 反thread和global钩子的应用,可以分别实现反两种钩子-anti-thread the hook and global applications can be realized against the two hook
Platform: |
Size: 110592 |
Author: 莫毅 |
Hits:
Description: 利用hook技术关闭第三方程序的窗口,比如某些杀毒软件的警告窗口:)-use hook technical procedures for the closure of a window of a third party, such as certain anti-virus software warned window :)
Platform: |
Size: 182272 |
Author: xxxxxxxx |
Hits:
Description: 天书夜读(试读版),来自驱动开发网的大牛楚狂人与wowocock合写的Windows内核探索教程,主要介绍了对内核进行反汇编的一些基本知识及进行内核DIY如hook系统关键调用的介绍。是内核开发爱好者及黑客们的必备良品。-Book Reading Night (Trial version), from network drive to open the big cattle Madman of Chu and co-wrote wowocock the Windows kernel to explore tutorials, mainly the introduction of core anti-compiled some of the basic core knowledge and DIY, such as hook the key to introduce the system call. Is the kernel development enthusiasts and hackers yield essential.
Platform: |
Size: 384000 |
Author: kingbaser |
Hits:
Description: Hook Explorer SourceCode
支持查找系统内的全局钩子
VB完整源代码
VB编写的反hook代码比较少见 这个是难得的一个精品-Hook Explorer SourceCode support system to find the overall integrity of the hook VB source code VB code to prepare the anti-hook relatively rare this is a rare quality
Platform: |
Size: 63488 |
Author: 张京 |
Hits:
Description: ring0--hook NtContinue+source_code
ring0下面hookNtContinue 使用drx7寄存器实现的hook
this code hooks ntoskrnl!NtContinue to set dr7 to 0 (no updating of dr7)
so NtContinue called from ring3 cannot alter drX registers...
This hook will only PREVENT drX clearing from SEH (kiuser->ntcontinue)
and will not alter debugging using ring3 debuggers (olly->SetThreadContext)
mainly developed for personal reasearch and as anti-bpm...
Hook NtContinue (not exported from ntoskrnl.exe but exported in ntdll.dll with service number) to set dr7 to 0 prior to calling original NtContinue so debug registers won t be changed from seh and ring3 code =)
Its use for some targets such as armadillo... but never posted code...
by deroko-ring0- hook NtContinue+ source_codering0 use the following hookNtContinue register drx7 realize the hook this code hooks ntoskrnl! NtContinue to set dr7 to 0 (no updating of dr7) so NtContinue called from ring3 cannot alter drX registers ... This hook will only PREVENT drX clearing from SEH (kiuser-> ntcontinue) and will not alter debugging using ring3 debuggers (olly-> SetThreadContext) mainly developed for personal reasearch and as anti-bpm ... Hook NtContinue (not exported from ntoskrnl.exe but exported in ntdll. dll with service number) to set dr7 to 0 prior to calling original NtContinue so debug registers won t be changed from seh and ring3 code =) Its use for some targets such as armadillo ... but never posted code ... by deroko
Platform: |
Size: 6144 |
Author: 张京 |
Hits:
Description: 一个加强的密码框控件,防HOOK,防键盘记录,防字典攻击-An enhanced password box control, anti-HOOK, anti-keyloggers, anti-dictionary attack
Platform: |
Size: 30720 |
Author: 王泵 |
Hits:
Description: 检测自己不被Hook,这在反黑、反病毒应用中是很重要的-Detection of their own not to be Hook, in the anti-, anti-virus applications is very important
Platform: |
Size: 17408 |
Author: viter |
Hits:
Description: ssdt钩子检测,利用查找ntkrnlpa.exe中导出的ssdt的起始地址和大小,比较实际的ssdt地址表中的内容,找出钩子-ssdt hook detection, the use of export ntkrnlpa.exe Find ssdt the start address and size, a more realistic ssdt address the contents of the table to find out hook
Platform: |
Size: 6144 |
Author: john smith |
Hits:
Description: 钩openProcess,防被杀,躲过任务管理器-Hook openProcess, anti-killed
Platform: |
Size: 82944 |
Author: wujianling |
Hits:
Description: 取page段地址的代码 大概包括了ssdt, idt, msr钩子,3种notify,还有从文件读取偏移抗猥琐的代码. 支持这个编程板块-Get page segment address code probably includes ssdt, idt, msr hook, three kinds of notify, also read from the file offset anti-insignificant code. To support the programming plate
Platform: |
Size: 11264 |
Author: r00tsh3ll |
Hits:
Description: VC写的一个DLL.主要用来提供给C#调用,因为C#不支持全局钩子..自定义方法实现简单进程防杀.(Hook原理)-VC to write a DLL. Is mainly used to C# to call, because C# does not support global hooks .. Since the simple process of definition of methods to achieve anti-killing. (Hook Principle)
Platform: |
Size: 1676288 |
Author: 十二 |
Hits:
Description: anti np inline hook,可以过游戏保护np的inline hook,目前还是可以使用,asm源码-anti np inline hook, can lead the game to protect np the inline hook, or you can use the current, asm source
Platform: |
Size: 1024 |
Author: 肖玛佳 |
Hits:
Description: Anti Hook from ring3
Platform: |
Size: 21504 |
Author: depress |
Hits:
Description: Windows XP是通过sysenter调用KiFastCallEntry将ntdll.dll的调用切换到内核的。KiFastCallEntry的原理是通过在SSDT中查找函数地址跳转。所以只要伪造一张原始SSDT,就可以使得SSDT-HOOK无效了。-Windows XP by calling KiFastCallEntry sysenter ntdll.dll call will switch to the kernel. KiFastCallEntry SSDT principle is to find the function by address jump. So long as the original forged an SSDT, you can make SSDT-HOOK invalid.
Platform: |
Size: 5120 |
Author: 何耀彬 |
Hits:
Description: anti hook for win7 delphi
Platform: |
Size: 354304 |
Author: invasor |
Hits: