Location:
Search - PRMonitor
Search list
Description: 这是一个非常好的内核级HOOK API的例子,想看看效果里面的bin文件夹可以有编译好的程序,其中内核监视没有实现,进程和注册表监视已经完成。这个代码绝对可以成功编译,因为hookzwcreateprocess里的代码是驱动设备程序的,所以编译环境的设置比较复杂,所以在这个压缩包里也包含了一个小教程,教你去搭建vc 6.0中开发驱动设备程序的环境,并且带了个样本。声明:这个程序运行XP下,在2000下会造成蓝屏
Platform: |
Size: 81773 |
Author: zhenbiao |
Hits:
Description: Ring0监控程序PRMonitor源代码
Platform: |
Size: 75961 |
Author: gls |
Hits:
Description: 利用windows驱动开发对现有的进程进行监控,可以对现有的进程进行放行和组织。
Platform: |
Size: 76341 |
Author: 钟韬 |
Hits:
Description: 这是一个非常好的内核级HOOK API的例子,想看看效果里面的bin文件夹可以有编译好的程序,其中内核监视没有实现,进程和注册表监视已经完成。这个代码绝对可以成功编译,因为hookzwcreateprocess里的代码是驱动设备程序的,所以编译环境的设置比较复杂,所以在这个压缩包里也包含了一个小教程,教你去搭建vc 6.0中开发驱动设备程序的环境,并且带了个样本。声明:这个程序运行XP下,在2000下会造成蓝屏-This is a very good kernel-level HOOK API examples, I would like to look at the effects inside the bin folder can be compiled procedures, which did not materialize to monitor the kernel, processes and registry monitoring has been completed. This code is absolutely able to successfully compile, because the code is hookzwcreateprocess in process-driven equipment, so the compiler set up the environment more complex, so in this compression bag also contains a small tutorial to teach you to build in vc 6.0 device driver development program environment, and带了个samples. Statement: This program runs under XP, in 2000 will cause a blue screen
Platform: |
Size: 81920 |
Author: zhenbiao |
Hits:
Description: Ring0监控程序PRMonitor源代码-Ring0 monitoring program PRMonitor source code
Platform: |
Size: 75776 |
Author: gls |
Hits:
Description: 利用windows驱动开发对现有的进程进行监控,可以对现有的进程进行放行和组织。-The use of windows-driven development process of existing monitoring, can release the existing process and organization.
Platform: |
Size: 75776 |
Author: 钟韬 |
Hits:
Description: 一个进程行为监控的驱动 和 应用程序源码-Drive a process behavior monitoring and application source code
Platform: |
Size: 267264 |
Author: ranwei |
Hits: