搜索资源列表
NT下进程隐藏
- 在NT环境下隐藏进程,也就是说在用户不知情的条件下,执行自己的代码的方法有很多种,比如说使用注 册表插入DLL,使用Windows挂钩等等。其中比较有代表性的是Jeffrey Richer在《Windows核心编程》中 介绍的LoadLibrary方法和罗云彬在《Windows环境下32位汇编语言程序设计》中介绍的方法。两种方法的 共同特点是:都采用远程线程,让自己的代码作为宿主进程的线程在宿主进程的地址空间中执行,从而达 到隐藏的目的。相比较而言,Richer的方法由于可以使用c/c++等高级
进程查看源码
- 内存进程/模块查看器(含源码) 发信站:安全焦点(2001年4月16日11时50分22秒) Process ...PS.exe(执行文件),PSAPI.dll(NT4的动态链接库), -memory processes / module viewer (including source code) wrote station : security focus (at 11:50:22 on April 16, 2001) ... PS.exe Process (Enforcement), PSA
进程手术刀1.0
- 功能:1.显示系统进程及进程的模块、线程信息。2.能*任意进程包括系统服务进程。3.能释放任意进程中的任意模块,不过有些关键模块释放不了。4.结束任意进程中的任意线程。5.请用右键进行操作。编译平台:1.该代码在Windows2000+sp2+VC.net平台下编译通过。应用:1.可以用来结束有些以服务进程形式的HACKER及病毒进程。2.可以干掉以DLL形式存在的*。警告:不要太随意得KILL进程,有些服务进程你KILL了之后要倒霉的。-functions : 1. Display Sys
DLL
- vb进程隐藏,DLLring3下进程隐藏-vb进程隐藏
DLL
- DLL注入 进程防杀 进程线程编程 -dll insert
DllPatch
- DLL内存补丁,可查找进程中的dll模块,对dll模块的基地址相对偏移处修改内存,相比流行的进程内存补丁更进了一步-DLL memory patch can be find in the process of dll module, dll modules of relatively offset base address corrections memory, compared to the process of popular memory patch has taken one step
InJectDLL
- 这个DLL封装了两个函数,一个是InJectDll,一个是UnLoadDll,分别是讲一个DLL注入到一个进程和将一个DLL从一个进程中卸载。两个函数的参数都一样,第一个是要操作的进程PID,一个是要操作的dll名称字符串。-The DLL encapsulates the two functions, one is InJectDll, one UnLoadDll, respectively, talk about a DLL injected into a process and a DLL
APIfunctionInfoForInsertDLL
- 这是有关DLL进程注入的API函数的说明整理,并配有相应的示例说明。-This is the DLL into the process of finishing the API function, descr iption, and with the corresponding examples illustrate.
ProcessMng
- 该软件实现了简单的windows任务管理器功能,具有查看进程、结束进程、查看进程模块、DLL注入、DLL卸载等功能-The software implements a simple task management feature windows with view the process, the end of the process, view the process module, DLL injection, DLL unloading functions
DllInjectCode
- DLL注入到其它进程中执行。透彻讲解将dll植入远程进程。-DLL injection to perform other processes. Thorough explanation will be implanted into the remote process dll.
zhurumokuai
- 注入进程模块加例程,模块_注入进程.ec,注入.d-Add routines into the process module, the module _ injection process. Ec, injection. Dll
dll-into-exe
- 进程注入的最简单示例代码,VC6.0平台,-process injection sample On windows system
Delphi-unloading-DLL-process
- 正一些*采用DLL注入的方式存在于系统中,由于其隐蔽性,对于用户来说是很大威胁,下面介绍如何用Delphi卸载任意进程的某个动态链接库DLL。一、DLL注入DLL注人是指以各种如钩子、远程线程、*DLL等方式,将某个DLL注入到目标进程中运行,由于不需要进程驻留,这种方式往往能达到较好的隐藏效果。-Some Trojans are using DLL injection methods exist in the system, because of its hidden nature, is
suppopdwindhwuse
- 窗口形状是背景图,支持动态按钮及用DLL接收处理按钮及按键消息(Shape of window is the background, support for dynamic button button and use DLL receives treatment and key message)
XSZTC
- Windows within 13 important dll bas(Windows within 13 important DLL bas)
modsyrehl
- Winsocket DLL 封装,该类是SOCKET通讯综合模型,还可以(Winsocket DLL encapsulation, the class is the SOCKET communication, a comprehensive model can also)
exaqples
- A written in VC call VB DLL call examples of procedures, maybe someone feel strange, but it is also a kind of method
57655229
- Realization method with the MFC application wizard to generate a regular DLL, in regular DLL is derived from
methoe-nethod-call
- 一个用VC调用VB写的DLL的调用例子程序,也许有人觉得奇怪,但这也是一种方法(A written in VC call VB DLL call examples of procedures, maybe someone feel strange, but it is also a kind of method)