Location:
Search - bios hook
Search list
Description: Hook Bios的驱动代码,可以返回指定的bios信息,用于破解读取bison的程序
Platform: |
Size: 13175 |
Author: mergerly |
Hits:
Description: 此压缩文件中包含了5个基于VC++的程序,包括:计算机监测(netbios sniffer)、键盘钩子(keyhook)、注册表修改(regist)、windows后门(windows)、服务通信(PublicNetSoft)。-this compressed file contains five VC-based procedures, including : computer monitoring (netbios sniffers), keyboard hook (keyhook), the Windows Registry (662), rear door windows (windows), communication services (PublicNetSoft).
Platform: |
Size: 19846144 |
Author: 黄国超 |
Hits:
Description: BIOS Rootkit为了达到控制系统流程的目的,一般会采用Hook IVT,即Hook中断向量表的方式来实现。IVT Hook的实现和检测,涉及许多具体的问题。因此,我把IVT Hook分几部分来进行讨论。在本节和下面几节中,我们将讨论如何借助Bochs的帮助来查看原始IVT、分析IVT Hook情况以及在此基础上写一个简单的IVT检测程序。闲话少说,这就开始我们的旅程吧-BIOS Rootkit process control system in order to achieve the purpose, would generally be applied Hook IVT, ie interruption Hook way to achieve scale. IVT Hook realization and testing, involving a number of specific issues. Therefore, I have several parts IVT Hook for discussion. In this section and the following sections, we will discuss how to help with Bochs to see the original IVT, analysis of IVT Hook, as well as written on the basis of a simple testing procedure IVT. Bet, which it began our journey
Platform: |
Size: 359424 |
Author: 王小明 |
Hits:
Description: 向BIOS中植入模块,HOOK中断向量表,HOOK NTLDR加载过程以及HOOK内核函数,SSDT hook。-Add module into bios,HOOK IVT,HOOK NTLDR loder process and hook knrnel function,just as SSDT HOOK
Platform: |
Size: 10240 |
Author: 俊豪 |
Hits:
Description:
Platform: |
Size: 589824 |
Author: 莫名 |
Hits:
Description: 方正畅听的3.0版可以通过Hook Bios信息破解,Xuanyue大侠发布了一个破解补丁,但是这个补丁在XP上会蓝屏,原因是SSDT Hook的时候没有关闭中断就直接修改系统SSDT表导致的。很多人反映了,大虾没有时间修正。于是小弟代劳一下。
没有源代码,IDA逆了下驱动,自己写一个,然后替换原来补丁的驱动资源。在此膜拜一下IDA F5的强大。原理很简单,就是Hook ZwMapViewOfSection函数,判断是读Bios信息的,就把伪造的方正Bios信息返回。-Founder Cheong listen through the 3.0 version of crack Hook Bios information, Xuanyue crack heroes released a patch, but the patch will be a blue screen in XP because the SSDT Hook interrupted when there is no closure on the table directly modify the system caused by SSDT. A reflection of many people, the amendment did not have time to shrimp. So do look younger. There is no source code, IDA reverse the next drive, to write a patch and then replace the original drive resources. Worship you in this powerful IDA F5. The principle is very simple, Hook ZwMapViewOfSection function is to determine Bios information is read, they forged return Founder Bios information.
Platform: |
Size: 83968 |
Author: 好好 |
Hits:
Description: Hook to call BIOS initialisation function for Linux v2.13.6.
Platform: |
Size: 7168 |
Author: dangmongyei |
Hits:
Description: This driver is needed because a number of Samsung laptops do not hook their control settings through ACPI. So we have to poke around in the BIOS to do things like brightness values, and special key controls.
-This driver is needed because a number of Samsung laptops do not hook their control settings through ACPI. So we have to poke around in the BIOS to do things like brightness values, and special key controls.
Platform: |
Size: 9216 |
Author: qbyiuwk |
Hits: