资源列表
CopyHook_src
- 使用外壳扩展的copyhook监控资源管理的文件复制粘贴拷贝删除等等操作,也可以再操作执行前调用回调函数,决定是否执行-Expansion of the use of shell resources management monitoring copyhook copy and paste the file copy operation of delete, etc., also can be operated to implement a callback function before th
hook
- hook DeviceIoControl
windows_kernel_tool
- 一:SSDT表的hook检测和恢复 二:IDT表的hook检测和恢复 三:系统加载驱动模块的检测 四:进程的列举和进程所加载的dll检测 -1: SSDT table hook detection and recovery 2: IDT table hook detection and recovery 3: System load driver module test 4: the process list and the process of loading the dll
DLL
- 驱动级DLL注入源码。包含有系统兼容性检测、驱动DLL注入技术、API HOOK技术,并且提供应用层测试。-Driver stage DLL into the source code. Contains system compatibility testing, driving the DLL implantation technology, technology, and provide the HOOK API application layer test.
winio3
- 修改过的winio.dll,可以绕过一些反外挂程序-Modified winio.dll, you can bypass some anti-plug-in
e
- 易语言驱动全通信源码,驱动级进程隐藏、进程保护! -Easy language to drive the whole communication
detours
- 一个用于做HOOK开发的库,已经修改过,有32位和64位两种支持-the library which provide the function to HOOK the system API.
D3D9
- D3D9黑屏优化DNF游戏 可降低游戏对机器配置要求 用于多开
KernnelInject
- 火绒内核无模块注入 驱动底层注入 模仿火绒安全软件注入方式-huongrong kernel inject
PB串口通讯API源代码
- PB串口通讯API源代码,不需要mscomm32.ocx的方法,比较强大(PB serial communication API source code, do not need mscomm32.ocx method, relatively powerful)
EasyHook 2.6 Binaries
- 最近一段时间由于使用MinHook的API挂钩不稳定,经常因为挂钩地址错误而导致宿主进程崩溃。听同事介绍了一款智能强大的挂钩引擎EasyHook。它比微软的detours好的一点是它的x64注入支持是免费开源的。不想微软的detours,想搞x64还得购买。 EasyHook提供了两种模式的注入管理。一种是托管代码的注入,另一种是非托管代码的注入。我是学习C++的,所以直接学习了例子中的非托管项目UnmanagedHook。里面给了一个简单的挂钩MessageBeep API的示例(D
DLL_Hijacker_Rewritten-master
- dll劫持神器。指定Dll后自动生成劫持Dll源码,在目标函数中添加代码即实现劫持功能,简单好用(DLL hijacking.After specifying Dll, the hijacking Dll source code is automatically generated, and the hijacking function is realized by adding code to the objective function, which is simple and easy t