Description: 驱动级的隐藏进程代码,在驱动层通过替换ssdt地址表中的函数来隐藏进程-Driver-class to hide the process of code, in the driver layer SSDT address table by replacing the function to hide the process of Platform: |
Size: 135168 |
Author:俞健 |
Hits:
Description: Completely hide a process on Windows NT, 2000, XP SP2 in Visual Basic 6!
This project uses a kernel driver, for which the source is also included. Platform: |
Size: 36864 |
Author:MoDs |
Hits:
Description: 进程隐藏代理,可以隐藏指定的进程,通过驱动程序-The process of hidden agents, to hide the process designated by the driver Platform: |
Size: 156672 |
Author:北京海思科 |
Hits:
Description: 驱动级的隐藏进程代码,在驱动层通过替换ssdt地址表中的函数来隐藏进程-Drive-level code to hide the process, in the driver layer ssdt address by replacing the function table to hide the process of Platform: |
Size: 3072 |
Author:帅俊 |
Hits:
Description: 利用HOOK SSDT表达到隐藏进程信息,内有驱动代码和加载代码-Use the expression to hide the process HOOK SSDT information, there are driver code and load code Platform: |
Size: 39936 |
Author:裴小伟 |
Hits:
Description: 驱动级的强力保护进程驱动级隐藏进程,E语言模块,欢迎使用!-Strong protection of the driver stage process of the driver stage to hide the process, E, language modules, Welcome! Platform: |
Size: 907264 |
Author:mggdx |
Hits:
Description: KsBinSword是一斩断黑手的利刃,它适用于Windows 2000/XP/2003操作系统,用于查探系统中的幕后黑手(木马后门)并作出处理,当然使用它需要用户有一些操作系统的知识。
KsBinSword内部功能是十分强大的。它有着自己的独创核心态进程管理方案、简洁而不失效率的网络防火墙、强大而稳定的文件过滤驱动、深入磁盘底层甚至穿透还原软件的磁盘微端口驱动。可能您也用过很多类似功能的软件,比如一些进程工具、端口工具,但是现在的系统级后门功能越来越强,一般都可轻而易举地隐藏进程、端口、注册表、文件信息,一般的工具根本无法发现这些“幕后黑手”。 KsBinSword使用大量新颖的内核技术,使得这些后门躲无所躲。-KsBinSword the cutting edge of a cut off the black hand, it applies to the Windows 2000/XP/2003 operating system used to identify the system behind the (backdoor Trojan) and handle, of course, it requires the user to have some knowledge of the operating system. The The KsBinSword internal function is to very powerful. It has its own original kernel process management solutions, simple and without losing the efficiency of network firewall, powerful and stable file system filter driver, in-depth disk underlying even penetrate restore software disk miniport driver. You also may be used a lot of similar features of the software, a number of process tools, port tools, and system-level backdoor capabilities is growing, and generally can be easily hidden process, port, registry, file information, the general tools simply can not find these " behind" . KsBinSword use a large number of new core technology, the back door to hide nothing to hide. Platform: |
Size: 3888128 |
Author:viki |
Hits:
Description: the process of development of a driver module to hide files in Linux OS (you can read the article about Hide Driver for Windows OS here). Platform: |
Size: 4096 |
Author:sagar |
Hits:
Description: hidecon, utility rootkit for x64
requires patchguard disabled, if not disabled... use patch which you may find on my web site.
usage:
hidecon -l (display process list)
hidecon -le display hidden processes (dbgprint)
hidecon -ld (load ioport3 driver) 加载驱动
hidecon -ud (unload ioport3 driver) 卸载驱动
hidecon -ph (hide process - ProcessId) 隐藏进程
hidecon -pu (unhide process - ProcessId) 显示进程
hidecon -pht (remove handle table entry - ProcessId)
hidecon -phi (reinsert handle table entry - ProcessId)
all commands a valid ProcessId, except -ld and -ud
all information is stored in driver, hidecon.exe simply s commands and exits
let me know if any problems (twitter).
i added support for windows 8, and will enable this at sometime in the future :)-hidecon, utility rootkit for x64
requires patchguard disabled, if not disabled... use patch which you may find on my web site.
usage:
hidecon-l (display process list)
hidecon-le display hidden processes (dbgprint)
hidecon-ld (load ioport3 driver) 加载驱动
hidecon-ud (unload ioport3 driver) 卸载驱动
hidecon-ph (hide process- ProcessId) 隐藏进程
hidecon-pu (unhide process- ProcessId) 显示进程
hidecon-pht (remove handle table entry- ProcessId)
hidecon-phi (reinsert handle table entry- ProcessId)
all commands a valid ProcessId, except-ld and-ud
all information is stored in driver, hidecon.exe simply s commands and exits
let me know if any problems (twitter).
i added support for windows 8, and will enable this at sometime in the future :) Platform: |
Size: 2883584 |
Author:songjiayu |
Hits:
Description: This a windows C++ driver and loader project to hider 32 bit process running under the windows OS. It will hide the selected executable process shown in the taskmgr.-This is a windows C++ driver and loader project to hider 32 bit process running under the windows OS. It will hide the selected executable process shown in the taskmgr. Platform: |
Size: 14336 |
Author:amumux |
Hits:
Description: 进程隐藏之断链隐藏源码,通过断链方式来隐藏进程,驱动不成功的可以考虑试试这个(The process of hiding the broken chain hidden source, by breaking the chain to hide the process, the driver failed to consider this try.) Platform: |
Size: 5120 |
Author:三无DISO |
Hits: