Location:
Search - nt
Search list
Description: 将一个程序,安装成NT服务控制其他服务。
Platform: |
Size: 42442 |
Author: |
Hits:
Description: 在NT环境下隐藏进程,也就是说在用户不知情的条件下,执行自己的代码的方法有很多种,比如说使用注 册表插入DLL,使用Windows挂钩等等。其中比较有代表性的是Jeffrey Richer在《Windows核心编程》中 介绍的LoadLibrary方法和罗云彬在《Windows环境下32位汇编语言程序设计》中介绍的方法。两种方法的 共同特点是:都采用远程线程,让自己的代码作为宿主进程的线程在宿主进程的地址空间中执行,从而达 到隐藏的目的。相比较而言,Richer的方法由于可以使用c/c++等高级语言完成,理解和实现都比较容易 ,但他让宿主进程使用LoadLibrary来装入新的DLL,所以难免留下蛛丝马迹,隐藏效果并不十分完美。罗 云彬的方法在隐藏效果上绝对一流,不过,由于他使用的是汇编语言,实现起来比较难(起码我写不了汇 编程序:))。笔者下面介绍的方法可以说是对上述两种方法的综合:采用c/c++编码,实现完全隐藏。并 且,笔者的方法极大的简化了远程线程代码的编写,使其编写难度与普通程序基本一致。-the NT environment hidden process, the user is unaware of the conditions, the implementation of their code There are various ways, for instance, the use of the registry into DLL, etc. linked to the use of Windows. The more representative Jeffrey Richer is the "core Windows programming" introduced by the LoadLibrary method and the Luo Bin, "under Windows 32 assembly language programming" introduced by the method. Two methods are common features are : remote threads are used to keep the code as host process threads in the host address space of the process to implement in order to achieve the purpose of hiding. Comparatively speaking, Richer way can be used as c / c Senior complete language, understanding and will be relatively easy to achieve, but he let the host process
Platform: |
Size: 32284 |
Author: 潘桂聪 |
Hits:
Description: NT环境下进程隐藏的实现 补充:把ThreadMain的代码给丢了,在这补上: DWORD ThreadMain(HINSTANCE hInst) { TCHAR szModule[256], szText[512], szFormat[256] LoadString(hInst, IDS_FORMAT, szFormat, sizeof(szFormat) / sizeof(TCHAR)) GetModuleFileName(NULL, szModule, 256) _stprintf(szText, szFormat, szModule) MessageBox(NULL, szText, _T(\"远程线程\"), MB_OK MB_ICONINFORMATION) return 0 }-NT environment to achieve the hidden process added : ThreadMain put in the code to be thrown in this supplement : DWORD ThreadMain (HINSTANCE hInst) (TCHAR szModule [256], szText [512], [256] szFormat LoadString (hInst, IDS_FORMAT, szFormat, sizeof (szFormat) / sizeof (TCHAR)) GetModuleFileName (NULL, szModule, 256) _stprintf (szText, szFormat, szModule) MessageBox (NULL, szText, found ( "Remote threads"), MB_OK MB_ICONINFORMATION) return 0 )
Platform: |
Size: 32682 |
Author: dsfd |
Hits:
Description: NT Service服务程序框架源代码,通过此框架可以快速编写NT Service服务程序,这样一来,系统即使不登陆也可启动服务。-NT Service Framework service program source code, adopted this framework can be rapidly prepared NT Service service procedures, this one, even without the landing system can be activated services.
Platform: |
Size: 28976 |
Author: aa |
Hits:
Description: Win95和NT下直接存取物理内存和端口IO地址的程序-Win95 and NT direct access to physical memory addresses and port IO procedures
Platform: |
Size: 110665 |
Author: 吴均 |
Hits:
Description: Linux File System Driver EXT2 IFS for Windows NT XP-Linux File System Driver for Windows EXT2 IFS ws NT XP
Platform: |
Size: 364557 |
Author: 辛万江 |
Hits:
Description: NT环境下调用中断门运行特权指令,在用户级调用系统级中断-NT environment door interrupted called Operation privileged instructions, the user-called system-level disruption
Platform: |
Size: 61556 |
Author: l |
Hits:
Description: 自动登陆NT内核操作系统-automatic landing NT operating system kernel
Platform: |
Size: 11392 |
Author: 小小 |
Hits:
Description: Regmon for Windows 9x/ME/NT/2K/XP,这款软件我想使用过的人,都会为它的强大功能所折服的,以前也有一份代码,但是4.0版的,编译后不能运行于XP下,其他系统不知道,现在这份9x/ME/NT/2K/XP都支持的,一起来欣赏牛人的作品吧,想完全看懂是有难度的,但是相信你看了会有很大的收获的。
Platform: |
Size: 448959 |
Author: zhenbiao |
Hits:
Description: 基于NT的Telnet客户端 -NT-based Telnet client
Platform: |
Size: 23356 |
Author: 是月 |
Hits:
Description: Windows NT安全性API简介-Windows NT security briefings API
Platform: |
Size: 9978 |
Author: jc |
Hits:
Description: NT 的注销、重启、关闭计算机-NT write-off, restart, shut down the computer
Platform: |
Size: 9976 |
Author: NJFN |
Hits:
Description: 通用NT服务程序的框架
Platform: |
Size: 501426 |
Author: 775ftplus |
Hits:
Description: 它能够启动你指定的任意多个程序。被启动的程序将像 NT 服务一样运行(例如,不用用户登陆机器,它们便会在后台运行)。 ? 在没有合适特权情况下,用户不能终止由此服务启动的程序(除非机器关闭)。 ? 你可以在 NT 服务之外测试和调试你的程序。例如,你可以在 DevStudio 调试器中运行你的程序,单步进入源代码中查找错误等。当“调试无错”后,你将它配置成产品,从 NT 服务启动它。-it can start your designated arbitrary number of procedures. The procedure was activated as NT services will be running the same (for example, users do not have landing machines, which will run in the background). In the absence of appropriate privileges, the user can not terminate this service launch procedures (unless machine off). You can NT service test and debug your program. For example, you can DevStudio Debugger run your program, single-step access to the source code looking for errors. When the "debug no mistakes", you will configure it into products, from NT service and start it.
Platform: |
Size: 28672 |
Author: 王明 |
Hits:
Description: NT Service服务程序框架源代码,通过此框架可以快速编写NT Service服务程序,这样一来,系统即使不登陆也可启动服务。-NT Service Framework service program source code, adopted this framework can be rapidly prepared NT Service service procedures, this one, even without the landing system can be activated services.
Platform: |
Size: 28672 |
Author: aa |
Hits:
Description: Regmon for Windows 9x/ME/NT/2K/XP,这款软件我想使用过的人,都会为它的强大功能所折服的,以前也有一份代码,但是4.0版的,编译后不能运行于XP下,其他系统不知道,现在这份9x/ME/NT/2K/XP都支持的,一起来欣赏牛人的作品吧,想完全看懂是有难度的,但是相信你看了会有很大的收获的。-Regmon for Windows 9x/ME/NT/2K/XP, this software I would like to make use of the people, it will be impressed by the power of the past, also have a code, but version 4.0, the compiler can not run on XP Under the other systems do not know, now supported by the 9x/ME/NT/2K/XP together who enjoy the works of cattle now, I would like to fully understand is difficult, but I believe you will have read the harvest.
Platform: |
Size: 448512 |
Author: zhenbiao |
Hits:
Description: config.c it is windows config.nt
Platform: |
Size: 82944 |
Author: yashar |
Hits:
Description: Windows NT 2000 Native API Reference
Platform: |
Size: 1579008 |
Author: Sonw |
Hits:
Description: 在windows环境中,可将dos路径转化成nt路径
例如:C:\\a.txt -->\device\diskvolume1\a.txt
还可以检验路径是否正确(In the windows environment, DOS paths can be transformed into NT paths
For example: C:\\a.txt -->\device\diskvolume1\a.txt
You can also verify that the path is correct)
Platform: |
Size: 11329536 |
Author: ifan帆
|
Hits:
Description: NT驱动加载源码,供参考学习使用。建议先看下windows内核编程(NT driver load source, for reference learning to use. It is recommended to look at windows kernel programming first)
Platform: |
Size: 67584 |
Author: ailwyn |
Hits:
« 12
3
4
5
6
7
8
9
10
...
50
»