所属分类:
其他
开发工具:Visual C++
文件大小:16KB
下载次数:56
上传日期:2006-03-21 10:08:33
说明: 检测windows下rootkit对文件的隐藏。some usermode overwrites first few bytes
of ZwQueryDirectoryFile and that trick will fail then :( So, you will
probably need a small database of the correct indexes for all Windows
versions
(under rootkit detection windows of the hidden documents. Some usermode overwrites first few bytes of ZwQueryDirectoryFile and that trick will fail then : (So, you will probably need a small database of the correct indexes for all Windows versions)
文件列表:
flister.cpp
flister.exe
flister.txt
