搜索资源列表
枚举打开文件句柄
- 遍历进程枚举打开的文件句柄,可以说是文件删除利器。有多种删除方式R3 R0层
RING0
- 无驱动R3进R0,VC源码 无驱动R3进R0,VC源码-No driver R3 into R0, VC source into the non-drive R3 R0, VC source
ProtectMon
- 驱动开发,根据PID保护进程,HOOK了 SSDT NtOpenProcess函数,至少可以抵御一切R3病毒终结你的进程!!适合新手学习HOOK ssdt的入门研究-Driven development, the protection under the PID process, HOOK the SSDT NtOpenProcess function, at least the end of you against all the process of virus R3!! Suitabl
Phantom
- Windows系统时光机(副标题: 守望者逆向源码) 这是一个逆向游戏守望者的一个驱动,用来给整个系统进行加速处理. 目前是整个系统都加速,包括系统时钟也变快了. 备注: R3层要加载D3D9相关的DLL进行初始化,才会真正的体验到加速的效果.-Windows System Time Machine (subtitle: Rye reverse source) This is a driver of a reverse game of Rye, accelerated proce
SysstratTimer
- 仿360开机启动计时器,驱动编写,开机后r3读取-360 imitation boot timer, driven to write, r3 read the boot
IATTableHook
- IATTableHook.rar 驱动内iat表的hook,很好用的,比r3强多了-IATTableHook.rar driver in IAT Table Hook, very good, much better than R3
APCInject
- win7 系列的!!这份代码算是比较完整的一个APC注入DLL的工程了~~自己都用这份,R3 + R0全部都有-Windows 7 series!!!!! This code is a relatively complete a DLL injection of APC engineering ~ ~ you are all use this, R3+ R0 all have