Shameless drive to load the Law of(ZT)-vulnerability warning-the black bar safety net

| ! --- from : http : //www.debugman.com/read.php?tid=614 Method one: replace the win32k . sys In 2k3 the system under ZwSetSystemInformation banned user mode load the driver, only allows the SMSS . exe to load the win32k . sys. So we can use this features: 1. Injection SMSS . EXE 2. Open the...

Bypassing Anti-Rookit kernel modules scanning techniques-vulnerability warning-the black bar safety net

This article describes some of the methods, you can bypass the current mainstream of the modernAnti-rootkittools, including, but not limited to:Icesword latest version, Gmer latest version, Rootkit unhooker latest version, DarkSpy latest edition and AVG Anti-rootkit latest version, etc. The curre...