Welcome![Sign In][Sign Up]
Location:
Search - restore SSDT

Search list

[Windows DevelopRESSDT

Description: VC恢复SSDT源代码,让杀毒主动失效的新代码。-VC to restore SSDT source code, so that the initiative ineffective antivirus new code.
Platform: | Size: 1775616 | Author: sadsa | Hits:

[Windows DevelopSDTrestore-0.2

Description: SSDT 恢复代码 SSDT 恢复代码-SSDT code to restore to restore SSDT code
Platform: | Size: 29696 | Author: sadf | Hits:

[OS programRestoreSSDT

Description: 恢复SSDT的超强源代码,直接读取原始SSDT地址表,可查看并修复所有SSDT。-To restore SSDT super source code, direct read SSDT original address table, you can review and fix all the SSDT.
Platform: | Size: 18432 | Author: jason | Hits:

[OS programRing3SSDT

Description: windows 用户态 感染驱动, 恢复ssdt-windows user state infected drive and restore SSDT
Platform: | Size: 11264 | Author: 张扬 | Hits:

[Driver DevelopRestoreShadow

Description: Ring0下恢复SSDT Shadow。-Restore SSDT Shadow.
Platform: | Size: 19456 | Author: ldf | Hits:

[Driver DevelopSSDT

Description: delphi的驱动 功能是恢复ssdt的地址.-delphi functions is to restore the drive ssdt address.
Platform: | Size: 63488 | Author: 马大仙 | Hits:

[Delphi VCL1

Description: delphi的驱动 功能是恢复ssdt的地址.-delphi functions is to restore the drive ssdt address.
Platform: | Size: 269312 | Author: 马大仙 | Hits:

[Driver DevelopreSSDT

Description: 恢复SSDT突破主动防御,基于c++实现。-Breakthrough initiative to restore SSDT defense, c++ to achieve.
Platform: | Size: 10240 | Author: rock | Hits:

[Delphi VCLDelphiRESSDT

Description: 就是delphi还原SSDT,效果还不错-Delphi is to restore the SSDT, the results were good
Platform: | Size: 3072 | Author: 张张 | Hits:

[Windows DevelopSSDT

Description: SSDT恢复的程序源 参考调试信息: Linking f:\driver\3 directory ******************** nmake.exe /c BUILDMSG=Stop. -i LINKONLY=1 NOPASS0=1 NTTEST= UMTEST= 386=1 link -out:.\i386\DrvTest.sys -machine:ix86 @C:\DOCUME~1\LANGOU~1\LOCALS~1\Temp\nma02324. Microsoft (R) Incremental Linker Version 7.00.9210 Copyright (C) Microsoft Corporation. All rights reserved. -MERGE:_PAGE=PAGE -MERGE:_TEXT=.text -SECTION:INIT,d -OPT:REF -OPT:ICF -IGNORE:4010,4037,4039,4065,4070,4078,4087,4089,4198,4221 -INCREMENTAL:NO -FULLBUILD -SSDT restore the program source reference debug information: Linking f: \ driver \ 3 directory******************** ' nmake.exe/c BUILDMSG = Stop.-I LINKONLY = 1 NOPASS0 = 1 NTTEST = UMTEST = 386 = 1 ' link-out:. \ i386 \ DrvTest.sys-machine: ix86 @ C: \ DOCUME ~ 1 \ LANGOU ~ 1 \ LOCALS ~ 1 \ Temp \ nma02324. Microsoft ( R) Incremental Linker Version 7.00.9210 Copyright (C) Microsoft Corporation. All rights reserved.-MERGE: _PAGE = PAGE-MERGE: _TEXT =. text-SECTION: INIT, d-OPT: REF-OPT: ICF-IGNORE: 4010 , 4037,4039,4065,4070,4078,4087,4089,4198,4221-INCREMENTAL: NO-FULLBUILD
Platform: | Size: 1861632 | Author: asd | Hits:

[Driver Developressdt2

Description: SSDT 恢复源码,如果你的SSDT表中的函数被hook,可用此代码恢复-SSDT restore source, if your SSDT table function is hook, this code can be used to restore
Platform: | Size: 5120 | Author: 杨靖 | Hits:

[Windows DevelopantiAVDLL

Description: 对抗杀毒软件的代码,来自一个抓取的样本,用了一些猥琐手段加载驱动,恢复SSDT-Against anti-virus software, code, sample from a crawl, with some insignificant means to load the driver and restore SSDT
Platform: | Size: 58368 | Author: hyutu | Hits:

[OS programSSDT

Description: 恢复SSDT的代码,用来干什么自己想吧 主程序在vc下编译通过,驱动用winddk编译-Restore SSDT code, for what they want to compile it by the main program in the vc, driver compiled with winddk
Platform: | Size: 17408 | Author: yuhang | Hits:

[Hook apiarktool

Description: 1、息钩子监视:列举系统上的消息钩子。 2、块加载监视:列举系统上加载的所有内核模块 3、SSDT监视:通过得到原始的SSDT地址来得到被恶意程序HOOK的API以及恢复SSDT 4、注册表保护:对一些重要的注册表项进行保护,防止恶意程序对其进行修改。 5、隐藏进程检测:检测出系统中隐藏的进程。 6、隐藏端口检测:检测出系统中隐藏的端口。 7、进程强杀:能够杀死系统中的对自身保护的恶意进程。-1, the interest rate hook monitoring: list of system messages on the hook. 2, block load monitoring: list of all the system loads the kernel modules 3, SSDT Monitor: SSDT get the original address to get the API HOOK malicious program and restore SSDT 4, registry protection: some important registry item for protection against malicious programs modify. 5, the hidden process detection: detection of hidden system process. 6, hidden port detection: the system detected the hidden port. 7, strong kill the process: the system can kill self-protection against malicious processes.
Platform: | Size: 3553280 | Author: 虫子 | Hits:

[Driver DevelopSSDT

Description: 驱动编写SSDT恢复工具,对于研究系统内核有很大帮助。-SSDT restore driver development tools, kernel for the study of great help.
Platform: | Size: 518144 | Author: lihui | Hits:

[Hook apiSSDT-Recovery-View-Tool

Description: SSDT 系统服务描述表恢复的查看工具,让我们更加清晰查看到系统的函数是否已经恢复-System Service Description Table SSDT restore the viewer, let us see more clearly a function of the system is recovered
Platform: | Size: 11264 | Author: 小梦 | Hits:

[OS programSecTools

Description: 系统辅助工具源码,大部分功能在R3下实现,只有SSDT恢复通过驱动实现-System aids source, to achieve most of the features in R3, only achieved through the drive to restore SSDT
Platform: | Size: 104448 | Author: wangyu | Hits:

[OS programmasmssdtrestoredriver

Description: Restore SSDT using masm If you do not know what you re doing do not use this.
Platform: | Size: 10240 | Author: robinhood | Hits:

[Windows DevelopDDELLPHI_SSDDE

Description: DELPHI恢复SSDT源码有搞搞这方面的人能学习一下 -DELPHI restore SSDT source to make trouble in this regard, one can learn about
Platform: | Size: 440320 | Author: jxjj609 | Hits:

[Remote ControlGh0st-RAT-Beta-2.5-VC_src

Description: 版本:2.5 控制端采用IOCP模型,数据传输采用zlib压缩方式 稳定快速,上线数量无上限,可同时控制上万台主机 控制端自动检测CPU使用率调整自己的工作线程, 稳定高效 宿主为svchost以系统服务启动,有远程守护线程,上线间隔为两分钟。 心跳包机制防止意外掉线.. 支持HTTP和DNS上线两种方式 自动恢复SSDT-Version: 2.5 control terminal with a the IOCP model of data transmission using zlib compression steady and rapid way, is no ceiling on the number of on-line, to adjust their own worker threads can simultaneously control thousands host control terminal automatically detects the CPU usage, stable and efficient host svchost system service starts, the remote daemon thread, on the line every two minutes. Two ways heartbeat packet mechanism to prevent accidental dropping .. support on-line HTTP and DNS automatically restore SSDT
Platform: | Size: 1039360 | Author: ljh | Hits:
« 12 »

CodeBus www.codebus.net