搜索资源列表
毕业论文_Windows下取证研究
- 论文从计算机取证角度出发,详细研究操作系统内核、入侵与反入侵策略、网络监测技术、系统分析技术等。用软件工程的方法,设计实现适合于Windows NT/2000/XP操作系统下的计算机取证软件-papers from the perspective of Computer Forensics, a detailed study operating system kernel, the invasion and the anti-invasion strategy, network monitori
anti-ssdt
- Windows XP是通过sysenter调用KiFastCallEntry将ntdll.dll的调用切换到内核的。KiFastCallEntry的原理是通过在SSDT中查找函数地址跳转。所以只要伪造一张原始SSDT,就可以使得SSDT-HOOK无效了。-Windows XP by calling KiFastCallEntry sysenter ntdll.dll call will switch to the kernel. KiFastCallEntry SSDT principle i
PSLib
- Completely hide a process on Windows NT, 2000, XP SP2 in Visual Basic 6! This project uses a kernel driver, for which the source is also included.
UserPort
- Win2K/XP下直接读取并口、串口等IO-kernel mode driver for Windows NT/2000 that gives usermode programs access to I/O Ports.
kill_bcb6
- a simple borland builder kernel utility, developped for clear all undesired user or kernel process. Userfull for test the PC speed without undesired process. This version is optimized for Borland C++ builder 6, and can run on windows 95/98/me/200
DriverFirewall
- 一个支持 windows xp 的驱动防火墙的源代码,用来监视系统内核驱动的加载。-Windows xp driver to support a firewall source code, used to monitor the loading of kernel drivers.
coLinux-0.7.4
- Cooperative Linux, 簡稱 coLinux, 是一種對 Linux kernel 的移植, 讓一台機器可以協同運作不同的作業系統. coLinux 的前身 UMLWin32 最早是由 Dan Aloni 在 2000 年所開發, 當時的目的是為了將 User Mode Linux 移植到 Cygwin 上. 在 2003 年時, Dan Aloni 運用了不同以往的想法與做法, 於是, 便產生了 coLinux. coLinux 不同於 VMware 等模擬器, coLinu
kernel.sockets.module
- KernelSocketsModule is intended to provide the simple common network programming interface in kernel mode without dependence on target operating system. On Windows XP and Windows Server 2003 it uses TDI-implementation, on Windows Vista, Windows Serve
KsBinSword
- KsBinSword是一斩断黑手的利刃,它适用于Windows 2000/XP/2003操作系统,用于查探系统中的幕后黑手(木马后门)并作出处理,当然使用它需要用户有一些操作系统的知识。 KsBinSword内部功能是十分强大的。它有着自己的独创核心态进程管理方案、简洁而不失效率的网络防火墙、强大而稳定的文件过滤驱动、深入磁盘底层甚至穿透还原软件的磁盘微端口驱动。可能您也用过很多类似功能的软件,比如一些进程工具、端口工具,但是现在的系统级后门功能越来越强,一般都可轻而易举地隐藏进程、端口、注
App-kernel-soft
- 本源码学习要点:普通应用程序如何与内核驱动通讯。 主要功能:实现了禁止打开某个程序和禁止非法关闭某个程序。 注意事项:本程序只在Windows XP下测试过。-The source learning points: how applications communicate with the kernel driver. Main features: Do not open a program and the prohibition of illegal closure of a prog
App-kernel-soft
- 本源码学习要点:普通应用程序如何与内核驱动通讯。 主要功能:实现了禁止打开某个程序和禁止非法关闭某个程序。 注意事项:本程序只在Windows XP下测试过。-The source learning points: how applications communicate with the kernel driver. Main features: Do not open a program and the prohibition of illegal closure of a prog
C-Sky-Rat
- C-Sky Rat Beta V1.2 全新亮相 [开始公测] 支持2000/xp/2003/Vista/7 修正gh0st 3.6 原版N多BUG,全新的技术.全新的外观. 以下是更新说明: 1.优化了屏幕控制时的算法,使其更加流畅. 2.更改了声音传输,将带宽稳定在1K/s左右. 3.修复了添加SkinH皮肤最小化后皮肤不透明的BUG. 4.添加了集群控制,改良了IOCP内核,支持同时控制,操作流畅. 5.添
BSODHack
- This program is compatible ONLY with Windows XP Service Pack 2, with the latest updates installed. Should work with or without KB929338. BSOD message text changing is not as guaranteed to work as the colour changing, because the addresses differ
terminate-kernel-process
- The source code of the program, showing an example of forced completion of all processes, including anti-virus Kaspersky, Agnitum, etc., using the driver PsTerminateProcess feature in Windows 2000, 2003, XP, Vista, 7, 8.
Windows-Kernel-Explorer-master
- Windows Kernel Explorer (you can simply call it as "WKE") is a free but powerful Windows kernel research tool. It supports from Windows XP to Windows 10, 32-bit and 64-bit. Compare to popular tools (such as WIN64AST and PCHunter), WKE is a