|
[原创][公开全部源码]禹盾hips2.01 ====打造自己的主机入侵防御系统
这个版本的驱动不会卡进程吧? |
|
[求助]TerminateProcess能结束系统进程吗
SE_DEBUG 既可,结束winlogon.exe c |
|
|
|
[求助]如何截获浏览器地址栏的内容
你留QQ吧! |
|
[求助]新人学delphi有没有什么好的方法
百度 GOOGLE 把C++的代码,抄成DELPHI,你就懂了! |
|
[求助]加解密算法
看MD5 或者 哈希曼, 在或者 B64 |
|
[原创]PRMoniter山寨版[学习驱动之菜鸟成品一]
假设恶意程序运行后,也被加入到规则了, 我理解能力浅薄,楼主别 |
|
[原创]PRMoniter山寨版[学习驱动之菜鸟成品一]
界面还不错,楼主的规则做的怎么样了,什么时候 open code? |
|
|
|
[求助]怎么实现对文件的拖拽行为啊
这个问题,GOOGLE 能搜索出N条出来,为什么不肯动手! |
|
[求助]c++的一道题目,请大侠们帮帮
本来我也想一句话解决的,但是为了步骤,还是不省掉! |
|
[求助]如何截获浏览器地址栏的内容
spi api hook send 等等,然后修改包的8个字节然后sned 发回去! |
|
|
|
[求助]c++的一道题目,请大侠们帮帮
没事不用客气!我是抄上面的 |
|
[求助]c++的一道题目,请大侠们帮帮
if x< 1 then begin y:= x; end else if (x>=1) and (x< 10) then begin y:= x+x-1 end else begin y:= x+x+x-11 end; delphi 版 |
|
[已解决]一道简单的程序题
冒泡不需要这么麻烦,两个循环就行了! |
|
各位老大 ,能截获IE 地址栏的输入吗 怎么截获
type TIEMonitor = class(TComObject, IDispatch, IObjectWithSite) public function GetTypeInfoCount(out Count:Integer):HResult;stdcall; function GetTypeInfo(Index,LocaleID:Integer;out TypeInfo):HResult;stdcall; function GetIDsOfNames(const IID:TGUID;Names:Pointer; NameCount,LocaleID:Integer;DispIDs:Pointer):HResult;stdcall; function SetSite(const pUnkSite:IUnknown):HResult;stdcall; function GetSite(const riid:TIID;out site:IUnknown):HResult;stdcall; function Invoke(DispID: Integer; const IID: TGUID; LocaleID: Integer; Flags: Word; var Params; VarResult, ExcepInfo, ArgErr: Pointer): HResult; stdcall; private IEThis:IWebBrowser2; Cookie:Integer; protected end; BHO = record SendBHO : TCopyDataStruct; Hwnd : THandle; Path : string; LenPath : array[0..MAX_PATH] of Char; end; const Class_IEMonitor: TGUID = '{47CFDDF9-6FBD-4C06-8752-24FEFBA10D51}'; var reg:Tregistry; TBHO :^BHO; implementation uses ComServ, ComConst; procedure DoBeforeNavigate2(const pDisp:IDispatch;var URL:OleVariant; var Flags:OleVariant;var TargetFrameName:OleVariant;var PostData:OleVariant; var Headers:OleVariant;var Cancel:WordBool); const i:integer=0; begin if SeachData(url)=True then begin Cancel:=True; New(TBHO); TBHO.path:= trim(URL)+'+'; TBHO.SendBHO.cbData:= Length(URL)+ 1; GetMem(TBHO.SendBHO.lpData, TBHO.SendBHO.cbData); StrCopy(TBHO.SendBHO.lpData, PChar(TBHO.path)); TBHO.Hwnd := FindWindow(nil, '网页防漏卫士'); SendMessage(TBHO.Hwnd,WM_COPYDATA,GetCurrentProcessId(), Cardinal(@TBHO.SendBHO)); FreeMem(TBHO.SendBHO.lpData); Dispose(TBHO); URL:='about:blank'; (pDisp as IWebbrowser2).Navigate2(URL,Flags,TargetFrameName,PostData,Headers); end; end; procedure DoOnQuit; begin end; procedure BuildPositionalDispIDs(pDispIDs:PDispIDList;const dps:TDispParams); var i:Integer; begin Assert(pDispIDs<>nil); for i:=0 to dps.cArgs-1 do pDispIDs^[i]:=dps.cArgs-1-i; if(dps.cNamedArgs<=0)then Exit; for i:=0 to dps.cNamedArgs-1 do pDispIDs^[dps.rgdispidNamedArgs^[i]]:=i; end; function TIEMonitor.Invoke(DispID: Integer; const IID: TGUID; LocaleID: Integer; Flags: Word; var Params; VarResult, ExcepInfo, ArgErr: Pointer): HResult; type POleVariant=^OleVariant; var dps:TDispParams absolute Params; bHasParams:Boolean; pDispIDs:PDispIDList; iDispIDsSize:Integer; begin Result:=DISP_E_MEMBERNOTFOUND; pDispIDs:=nil; iDispIDsSize:=0; bHasParams:=(dps.cArgs>0); if(bHasParams)then begin iDispIDsSize:=dps.cArgs*SizeOf(TDispID); GetMem(pDispIDs,iDispIDsSize); end; try if(bHasParams)then BuildPositionalDispIDs(pDispIDs,dps); case DispID of 104:begin Result:=S_OK; end; 250:begin DoBeforeNavigate2(IDispatch(dps.rgvarg^[pDispIDs^[0]].dispVal), POleVariant(dps.rgvarg^[pDispIDs^[1]].pvarVal)^, POleVariant(dps.rgvarg^[pDispIDs^[2]].pvarVal)^, POleVariant(dps.rgvarg^[pDispIDs^[3]].pvarVal)^, POleVariant(dps.rgvarg^[pDispIDs^[4]].pvarVal)^, POleVariant(dps.rgvarg^[pDispIDs^[5]].pvarVal)^, dps.rgvarg^[pDispIDs^[6]].pbool^); Result:=S_OK; end; 253:begin DoOnQuit(); Result:=S_OK; end; end;//end of case DispID of finally if(bHasParams)then FreeMem(pDispIDs,iDispIDsSize); end; end; function TIEMonitor.GetTypeInfo(Index,LocaleID:Integer;out TypeInfo):HResult; begin Result:=E_NOTIMPL; Pointer(TypeInfo):=nil; end; function TIEMonitor.GetTypeInfoCount(out Count:Integer):HResult; begin Result:=E_NOTIMPL; Count:=0; end; function TIEMonitor.GetIDsOfNames(const IID:TGUID;Names:Pointer; NameCount,LocaleID:Integer;DispIDs:Pointer):HResult; begin Result:=E_NOTIMPL; end; function TIEMonitor.GetSite(const riid:TIID;out site:IUnknown):HResult; begin if(Assigned(IEThis))then Result:=IEThis.QueryInterface(riid,site) else Result:=E_FAIL; end; function TIEMonitor.SetSite(const pUnkSite:IUnknown):HResult; var cmdTarget:IOleCommandTarget; Sp:IServiceProvider; CPC:IConnectionPointContainer; CP:IConnectionPoint; begin if(Assigned(pUnkSite))then begin cmdTarget:=(pUnkSite as IOleCommandTarget); Sp:=(CmdTarget as IServiceProvider); if(Assigned(Sp))then//获得IE的WebBrowser接口, Sp.QueryService(IWebBrowserApp,IWebBrowser2,IEThis); if(Assigned(IEThis))then begin IEThis.QueryInterface(IConnectionPointContainer,CPC);//寻找连接点 CPC.FindConnectionPoint(DWEBBrowserEvents2,CP); CP.Advise(Self,Cookie);//通过Advise方法建立Com自身与连接点的连接 end; end; Result:=S_OK; end; procedure DeleteRegKeyValue(Root: DWORD; Key: string; ValueName: string = ''); var KeyHandle: HKEY; begin if ValueName = '' then RegDeleteKey(Root, PChar(Key)); if RegOpenKey(Root, PChar(Key), KeyHandle) = ERROR_SUCCESS then try RegDeleteValue(KeyHandle, PChar(ValueName)); finally RegCloseKey(KeyHandle); end; end; procedure CreateRegKeyValue(Root: DWORD; const Key, ValueName, Value: string); var Handle: HKey; Status, Disposition: Integer; begin Status := RegCreateKeyEx(ROOT, PChar(Key), 0, '', REG_OPTION_NON_VOLATILE, KEY_READ or KEY_WRITE, nil, Handle, @Disposition); if Status = 0 then begin Status := RegSetValueEx(Handle, PChar(ValueName), 0, REG_SZ, PChar(Value), Length(Value) + 1); RegCloseKey(Handle); end; if Status <> 0 then raise EOleRegistrationError.CreateRes(@SCreateRegKeyError); end; 参考! |
|
[求助]软件开发
先看汇编,把汇编看下来,你就是个牛B的程序员了,或者先把牛当成B一样的来吹,吹的越大,你就越牛比了! |
|
[求助]除了HOOK SEND() 外,有没有办法得到当前IE的Cookie ?
BHO 首先得到IE的连接点,然后得到事件,最后。。。。。。。 |
|
[求助]CString 数组有没有特别要注意的?
先申请内存,用完就释放! |
操作理由
RANk
{{ user_info.golds == '' ? 0 : user_info.golds }}
雪币
{{ experience }}
课程经验
{{ score }}
学习收益
{{study_duration_fmt}}
学习时长
基本信息
荣誉称号:
{{ honorary_title }}
能力排名:
No.{{ rank_num }}
等 级:
LV{{ rank_lv-100 }}
活跃值:
在线值:
浏览人数:{{ visits }}
最近活跃:{{ last_active_time }}
注册时间:{{ user_info.create_date_jsonfmt }}
勋章
兑换勋章
证书
证书查询 >
能力值