网站首页

登录

driver

于 2007-11-02 发布文件大小:3KB

 0  127

下载积分: 1 下载次数: 114

我要下载

代码说明：

用DDDK编写驱动,修改SSDT表HOOK NTDebugActiveProcess函数钩子函数中可以判断PID号,决定是否放行,放行则在钩子函数中调用原来的NTDebugActiveProcess函数.否则直接返回False.HOOK成功后所有调用DebugActiveProcess的程序将会失效.当然可以按照你的需要HOOK更多的系统服务函数.同一服务函数的服务号在每个操作系统版本中是不同的.下面附件中编译完成的驱动请在WinXP SP2的环境下测试.否则可能会导致直接重启(Used to prepare DDDK drive, modify SSDT Table HOOK NTDebugActiveProcess function hook function can determine the PID number, decide whether to release, release in the hook function to call the original function NTDebugActiveProcess. False.HOOK Otherwise, after the success of a direct return all calls DebugActiveProcess procedures will be failure. You can, of course, in accordance with the needs of more system services HOOK function. the same service function of the service in each of the operating system versions are different. following the completion of the annex to compile drivers in WinXP SP2 test environment. or else may lead to the resumption of direct)

下载说明：请别用迅雷下载，失败请重下，重下不扣分！

发表评论

0 个回复

srcUDiskCpyManager_V2013_1012_1653
防止向U盘中拷贝文件, Hook Win32API, 实现在WinXp下U盘 DLP Hook函数列表:CopyFileExW Win7(x86/x64)下U盘DLP Hook函数列表: CoCreateInstance, IFileOperation::CopyItems IFileOperation::MoveItems IFileOperation::NewItem IFileOperation::RenameItem (U disk to copy files to prevent, Hook Win32API, U disk under WinXp achieve DLP Hook Function list: CopyFileExW Win7 (x86/x64) under U disk DLP Hook Function list: CoCreateInstance, IFileOperation :: CopyItems IFileOperation :: MoveItems IFileOperation: : NewItem IFileOperation :: RenameItem)

2021-01-27 11:38:35下载

积分：1
HookKBLL(src.for.VC6)
说明：一个不用DLL的键盘底层钩子，运行后可以监视其他应用的键盘输入。(an keyboard hook not use DLL, use it can monitor all application s keyboard input.)

2010-04-07 11:43:07下载

积分：1
BMI160_API
BMI160的初始化和一些API，可以参照代码中的流程。(BMI160 init code and API)

2016-08-19 09:50:43下载

积分：1
PhoenixUnhooker
内核查看器并有恢复功能，如果你喜欢的话可以告诉我(kernel viewer)

2011-10-01 16:08:24下载

积分：1
MouseTrace
MouseTrace，用 VC++写的鼠标Hook钩子，获取X,Y坐标，并适时显示在窗体上，如上图示，在窗体上移动鼠标，坐标信息会被跟踪，移出窗体则无效。(MouseTrace, using VC++ to write the mouse Hook hook, get X, Y coordinates and the time display on the form, as shown, move the mouse over the form, coordinate information will be tracked, out of form would be invalid.)

2015-02-06 10:32:13下载

积分：1
wordTOOLS100629
word开发测试工具，方便了解应用word自身API调用过程(word tools Application Demo)

2012-07-01 10:44:50下载

积分：1
monndis
一个通过hook ndis层来达到监控的工具，代码不错(a tool for hook ndis)

2021-01-24 23:18:43下载

积分：1
main
基于句柄类的文本查询示例（C++ Primer 4th）(Text handle classes of queries based on the sample (C++ Primer 4th) )

2013-09-22 15:12:37下载

积分：1
driver
用DDDK编写驱动,修改SSDT表HOOK NTDebugActiveProcess函数钩子函数中可以判断PID号,决定是否放行,放行则在钩子函数中调用原来的NTDebugActiveProcess函数.否则直接返回False.HOOK成功后所有调用DebugActiveProcess的程序将会失效.当然可以按照你的需要HOOK更多的系统服务函数.同一服务函数的服务号在每个操作系统版本中是不同的.下面附件中编译完成的驱动请在WinXP SP2的环境下测试.否则可能会导致直接重启(Used to prepare DDDK drive, modify SSDT Table HOOK NTDebugActiveProcess function hook function can determine the PID number, decide whether to release, release in the hook function to call the original function NTDebugActiveProcess. False.HOOK Otherwise, after the success of a direct return all calls DebugActiveProcess procedures will be failure. You can, of course, in accordance with the needs of more system services HOOK function. the same service function of the service in each of the operating system versions are different. following the completion of the annex to compile drivers in WinXP SP2 test environment. or else may lead to the resumption of direct)

2007-11-02 17:54:26下载

积分：1
HookAPILib0.51
说明： HookAPI的源玛文件，也有编译好的文件 HookAPI的源玛文件，也有编译好的文件(HookAPI)

2010-04-16 01:22:29下载

积分：1

696518资源总数
104287会员总数
49今日下载