搜索资源列表
IDTGuard
- IDT Hook 检测及恢复 此程序在 Ring3 下打开物理内存对象取得当前内存中的 IDT,再用打开对应的原始内核文件进行比较。带恢复功能。 此程序适用于 XP/2003。采用特征码搜索方式查找。注释详细,代码规范-IDT Hook detection and recovery procedures in this Ring3 to open the physical memory object to obtain the
WindowsHookLib_Source_Files
- Hooking DLL. Windows hook library. Keyboard, mouse, journal hooking etc.
DirScrAcc
- 直接写屏,直接从内存写到屏幕内存,然后刷出来。开发环境为Carbide 1.2 +SDK 2rd-Direct write screen, directly from the memory screen memory writes, and then brush out. Development environment for the Carbide 1.2+ SDK 2rd
TSKMON95
- For Windows 95 only! This simple task monitor program with Delphi & C SOURCE CODE demonstrates a generic hooking technique that can be applied to virtually any Win32 API - in this case, CreateProcess and ExitPro
GLHook_by_Decad
- Hooking Library for windows X86 Example with CreateProcessA CreateProcessW -Hooking Library for windows X86Example with CreateProcessA CreateProcessW
AddHotkeysSrc
- Hooking phone device on Windows Mobile and adding hotkeys
hook
- Hooking function MessageBox
EasyHook_2.6_Binaries
- Continuing Detours: the reinvention of Windows API Hooking
Tutorial
- Continuing Detours: the reinvention of Windows API Hooking
Unmanaged_API_Doc
- Continuing Detours: the reinvention of Windows API Hooking
Documentation
- Continuing Detours: the reinvention of Windows API Hooking
vice
- 能够找出给种类型的系统Hook,包括IAT表,SSDT表等相关的钩子-VICE is a tool to find hooks. Features include: 1. Looks for people hooking IAT s. 2. Looks for people hooking functions in-line aka detouring. 3. Looks for hooks in the System
ShadowWalker1.0
- 展示一个简单的实现,关于虚拟内存“钩子”和它的潜在应用的高级内核rootkits-Shadow Walker demonstrates a simple implementation of virtual memory "hooking" and it s potential application to advanced kernel rootkits.
SystemHooks2
- Windows hooking functions. Keyboard and Mouse hooks are provided. Low level and high level functions.
MouseKeyboardLib2005
- Windows hooking functions. Mouse hooks are provided. Low level and high level functions.
key_preview
- Windows hooking functions. Keyboard hooking demo. Low level and high level functions.
HookSys_code_demo
- Win32 API Hooking revealed.详细信息参见如下地址。http://www.codeproject.com/KB/system/hooksys.aspx-Use BHO dealing with Windows/Internet Explorer.
bkdp3_ssdt_hook
- This a simple Hooking Sample-This is a simple Hooking Sample
EasyHook_The_reinvention_of_Windows_API_hooking.r
- The EasyHook Contains API Hooking in C++ and Best Libraries for Microsoft C# as good as possible
KeyBoardFilterDriver
- 该代码的功能是设置键盘钩子,记录键盘操作记录,包括键盘扫描码。-the function of this code is setting keyboard hooking and keeping the log of keyboard operation,the scan code is also included in it.