本站首页 安全文库 源码学习 工具下载 技术文档 搜索全站 应聘求职 专业论坛
源码学习
PE辅助工具 加壳软件 脱壳软件 压缩引擎 补丁工具 调试软件 反汇编
插件开发 监视工具 内存操作 加密算法 编辑工具  Ring0   

Ring0

程序名称
作者
说明
Hook NtContinue deroko/ARTeam
 Ban dr7 changing from ring3 and foobaring hardware breakpoints
Hook ZwQuery deroko/ARTeam
 Hook NtZwQuerySystemInformation to hide SoftICE drivers
IopXxxControlFile Hook deroko/ARTeam
 catch Control Codes sent to themida driver
Ring0 memory dumper deroko/ARTeam
 dump ring0 memory only
Fake RDTSC deroko/ARTeam
 make rdtsc privileged instruction and handle it system wide
Loader from ring0 deroko/ARTeam loader for ring3 from ring0
Hook scan deroko/ARTeam scan for hooks in exported procedures from ntoskrnl.exe
IntFooBar deroko/ARTeam hook int1/3 with 0FFFFFFFF and make IDT user visible/writable
Tasm 32 DDK deroko/ARTeam make drivers using tasm32

 


©2000-2012 PEdiy.com All rights reserved.By PEDIY
京ICP备11035376号