Description: hide processes, elevate process privileges, fake out the Windows Event Viewer so that forensics is impossible, and even hide device drivers (NEW!) All this without any hooking. Platform: |
Size: 142336 |
Author: |
Hits:
Description: 在2000和xp下,隐藏进程,VC6.0测试通过
在需要隐藏进程的时候#incoude"HideProcess.h",调用HideProcess()即可。-in 2000 and xp, hidden process, VC6.0 tested in the process need to hide when# incoude "HideProcess.h" Call HideProcess () can be. Platform: |
Size: 3072 |
Author:力 |
Hits:
Description: 挂钩SSDT隐藏进程,本人做了详细的注释,对学习驱动的人有很大帮助-SSDT hidden processes linked to, I make detailed notes, learning-driven people are very helpful Platform: |
Size: 36864 |
Author:long |
Hits:
Description: Ring3 ZwQuerySystemInformation Hook(HideProcess) 环境是xp sp2。需要注意的是在Debug版本中可能会存在问题,因为在使用WriteProcessMemory的时候可能会把int 3拷贝过去,所以大家要使用最好使用Release版。-ZwQuerySystemInformation Hook Ring3 (HideProcess) environment is SP2 xp. It should be noted that the Debug version may be a problem, because in the use of WriteProcessMemory may be the int 3 copy in the past, so we want to use the best use of Release version. Platform: |
Size: 21504 |
Author:Gray |
Hits:
Search - hideprocess hook