搜索资源列表
ssjpacket
- (这个是在网上搜集的别人的程序,只是用于学习) 这个程序是我的几个研究生去年没事时写的,用的是我写的一些类和函数。ssj这个游戏现在倒闭了,所以我将源代码公布出来。 这些源程序代码全部在VC++ 6.0 + Windows XP下调试通过。因为当时游戏总是更新(防止外挂),这个外挂程序也不得不跟着更新,以便发给注册的用户,所以源代码显得有点乱。不过这几天我将里面重要的函数和模块都做了注释,相信大家如果认真研究,还是能够看得懂的。此外挂程序有下面几个功能: 1。复制装备 2。强
DOC0008_arm_jtag
- ARM jtag调试代理软件,在ADS和STD下运行 -ARM JTAG debugging software agents, the ADS and running STD
hookntcontinue
- ring0--hook NtContinue+source_code ring0下面hookNtContinue 使用drx7寄存器实现的hook this code hooks ntoskrnl!NtContinue to set dr7 to 0 (no updating of dr7) so NtContinue called from ring3 cannot alter drX registers... This hook will only PREVENT dr
DBG_API
- Accoding to the Debugging Information, patch code into some program during the runtime.
mirager_1
- 它是利用调试技术编写成的API钩子。比起16位下传统的入口代码改写技术,它是没有多线程问题的,而且能够拦截LoadLibrary/GetProcAddress完成的API显式调用。当然,如果您告诉它一些类型信息,Mirager可以在拦截到调用时获取上下文,即参数和返回值-it is the use of technologies developed into debugging API hook. Compared to the traditional 16 under the entrance
CeApiSpy
- 这软件可以截获系统api操作, 如文件操作, CreatProcess, LoadLibary, 为开发和Bug调试提供方便。 也可以成为病毒扫描, 文件加解密, 程序控制的一部分-This software can be intercepted system api operation, such as file operations, CreatProcess, LoadLibary, for the development and Bug facilitate debugging. Can
hook
- 钩子注入程序的源代码,在winxp和win7下调试通过。-Hook into the program' s source code, winxp and win7 through debugging.
ScrGetWord_BCB
- 使用C++Builder6编写的取鼠标位置的单词,就像金山词霸等翻译软件一样,已调试通过。-The use of C++ Builder6 prepared to take the mouse location of the word, such as Kingsoft translation software, has been debugging through.
64-Bit_Starter
- 1) 64 Bit detouring code 2) 64 Bit compatible injector (other injectors may work, but I know for sure this one does) 3) Some debugging macros, ASSERT, VERIFY, and TRACE. 4) Example of their usage (hooking D3D10CreateDeviceAndSwapChain)
idastealth
- IDA Stealth is a plugin which aims to hide the IDA debugger from most common anti-debugging techniques. The plugin is composed of two files, the plugin itself and a dll which is injected into the debuggee as soon as the debugger attaches to the proce
NCoverage_Sources
- N-Coverage IDA Plugin and stand-alone Application N-Coverage consists of two parts: first of all there is the main stand-alone application which uses a custom debugging engine to place breakpoints into a given process in order to record execution o
LockSystemKeys
- 能屏蔽系统热键,win7+XP系统下调试通过。-To shield the hot key, win7+ XP systems through debugging.
VB-Del-Kernel-Hook
- VB恢复内核钩子的一个示例工程文件。可以调试。-VB restore a core sample project file hook. For debugging.
object-hook
- 信息隐藏亮点之一: 将rootkit作为资源隐藏于用户模式程序之中 亮点之二: 将这个用户程序代码作为生成密钥的引子,可以有效地防止逆向后,隐藏信息被纰漏,因为只有逆向后生成的 代码,跟原作者的代码丝毫不差,将来才能打开其隐藏至深的下载者链接及代码。 亮点之三:用一个固定的KEY,通过某种运算,产生出1024个密钥组成的数组。 然后用这个密钥组与用户代码进行运算,最终生成一个4字节的解码KEY。 利用解码KEY,在从加载到内存的驱动中,找出隐藏在其资源中的那份肮脏的 下载
RestoreShadowSource
- SSDT恢复源代码,是学习SSDTHOOK的参考资料,可以应用于外挂反调试学习当中-SSDT recover the source code, is to learn SSDTHOOK reference, can be applied to study which external anti-debugging
MySkinDebug
- 这个项目创建了两个钩子一个过程钩子,一个是调试钩子,打开调试钩子可以避免窗口被过程钩子修改过程函数。刚刚学习钩子可以拿来-The project to create a process hooks of the two hooks, a debug hook, open the debugging hooks can be avoided window process hook to modify the process function. Just to learn the hook can
Hook
- 一个简单的系统钩子,代码是书上找的,经过修改调试,能在VC++6.0上执行。-A simple system hook, the code book to find a modified debugging can be performed in VC++6.0.
CPP_HOOK_BASED_DEBUGGER
- 基于HOOK原理的Debugger,用于调试操作系统内核或者调试R3级别的程序-Based on the the HOOK principle Debugger for debugging the kernel of the operating system or debug the R3 level of procedures
Inject64
- windows8下的dll注入的功能,已经通过了调试-Windows8 under the DLL injection function, already through the debugging
aaded__gocld
- Tasking ede debugging environment compiler-Tasking ede was debugging environment compiler