搜索资源列表
asmvcring
- 这是一个汇编与VC结合的程序,在Ring3级获取Ring0级的操作-This is a compilation and VC combination of procedures, the Ring3 level access Ring0 class operation
ring0all
- 在win98下进入ring0的方法列举 转载-In win98 way into the list reproduced ring0
ring0nodriver
- 无驱动执行 Ring0 代码的源程序-No drive the implementation of the source code Ring0
afr
- 1. Create the Virus Program. * * 2. The Virus Modifies IDT to Get Ring0 Privilege.-1. Create the Virus Program.** 2. The Virus Modifies IDT to Get Ring0 Privilege.
令Win32应用程序跳入系统零层
- -有 没 有 简 单 一 些 的 办 法 呢 ? 我 们 可 以 令 一 个 普 通Win32 应 用 程 序 运 行 在Ring0 下, 从 而 获 得VxD 的 能 力 吗 ? 答 案 是 肯 定 的,请看本文-- Is there any simpler solutions? We can make an ordinary Win32 applications running on Ring0 under VxD s abilit
CallMsgRing0
- 在RING0中使用RING3函数MessageBox.-in RING0 use RING3 MessageBox function.
CallRing3FormRing0
- 在Ring0层中调用Ring3层的功能 需要安装DDK-in Rign0 layer called Ring3 layer functions need to install DDK
r3_2_r0
- Windows2000 XP 从Ring3层进入Ring0层的一种方法-Windows XP Ring3 layer from the layer into Rign0 a way
GetRing0
- 通过汇编获得Ring0级权限,可用在驱动开发上-through the compilation Rign0 level competence available on the Driver Development
KernelExec
- 从RING0级下启动RING3级的应用程序源代码-from RING0 activated RING3-level application program source code
10001Ring0
- 一段进入ring0的代码。-section of the code into ring0.
ntifs
- 一个最新最完整的ntifs.h导入库程序,用于开发无驱动的RING0程序。 -An up-to-date the most complete library ntifs.h import procedures for the development of non-driven RING0 procedures.
hookntcontinue
- ring0--hook NtContinue+source_code ring0下面hookNtContinue 使用drx7寄存器实现的hook this code hooks ntoskrnl!NtContinue to set dr7 to 0 (no updating of dr7) so NtContinue called from ring3 cannot alter drX registers...
R3toR0
- 从RING3进入RING0的方法,不需要驱动-RING0 from entering RING3 method does not require drivers
CPUwelltimer
- cpu精确记时程序,可精确到ms级别,本来准备写成加速工具的,由于ring0中断门问题耽误了-cpu precision in mind when procedures can be accurate to ms level, originally written to accelerate the tools, due to interruption of the door problem ring0 delayed
ExcpHookMonitor_0.0.4
- ExcpHook is an open source (see license.txt) Exception Monitor for Windows made by Gynvael Coldwind (of Team Vexillium). t uses a ring0 driver to hook KiExceptionDispatch procedure to detect the exceptions, and then show
PRMonitor
- Ring0监控程序PRMonitor源代码-Ring0 monitoring program PRMonitor source code
2008-01-13
- ntshell源代码,无驱动进入ring0层,可以实现进程脱钩。-ntshell source code, no driver to enter the ring0 layer, can realize the process of decoupling.
kernelfindprocess
- 内核级编程实践之检测进程工具和代码.ring0级别的进程检测。需要DDK环境。-Practice kernel-level programming tools and code detection process. Ring0 levels of the process of detection. DDK environment needs.
HookLibrary
- Hook Api Library 0.2 [Ring0&3] By Anskya Email:Anskya@Gmail.com ring3 inline hook For Api Thank: 前29A高手也一直都是我的偶像...z0mbie大牛...这里膜拜一下 使用的LDE32引擎是翻译他老人家的...C->Delphi... 说明: 1.利用堆栈跳转 没有使用传