首页
社区
课程
招聘
[转帖]Tuluka
发表于: 2011-7-5 23:42 2364

[转帖]Tuluka

2011-7-5 23:42
2364
Tuluka - what is it?

Tuluka is a new powerful AntiRootkit, which has the following features:
Detects hidden processes, drivers and devices
Detects IRP hooks
Identifies the substitution of certain fields in DRIVER_OBJECT structure
Checks driver signatures
Detects and restores SSDT hooks
Detects suspicious descriptors in GDT
IDT hook detection
SYSENTER hook detection
Displays list of system threads and allows you to suspend them
IAT and Inline hook detection
Shows the actual values of the debug registers, even if reading these registers is controlled by someone
Allows you to find the system module by the address within this module
Allows you to display contents of kernel memory and save it to disk
Allows you to dump kernel drivers and main modules of all processes
Allows you to terminate any process
Is able to dissasemble interrupt and IRP handlers, system services, start routines of system threads and many more
Allows to build the stack for selected device
Much more..


Tuluka is tested on the following operating systems(32-bit): 
Windows XP SP0 SP1 SP2 SP3
Windows Server 2003 SP0 SP1 SP2 R2
Windows Vista SP0 SP1 SP2
Windows Server 2008 SP0 SP1 SP2
Windows 7 SP0 SP1

Work on other versions of the operating system is not guaranteed. 
 You use this software at your own risk. The author makes no warranty. 


 Tuluka v1.0.394.77

MD5: 7ba2c1a8c6eac22a8f0d78409c8d485e

SHA-1: 17905ad4af09e5f27d14616f66e806544a3591e2

http://www.tuluka.org/tlk/Tuluka_v1.0.394.77.zip


YOU CAN GOOGLE.

Программное обеспечение выпуска и Windows Crack Обучение
Нам-Dabei Guanyin Бодхисаттва Нам без митабха

[招生]科锐逆向工程师培训(2024年11月15日实地,远程教学同时开班, 第51期)

收藏
免费 1
支持
分享
最新回复 (1)
雪    币: 97697
活跃值: (200834)
能力值: (RANK:10 )
在线值:
发帖
回帖
粉丝
2
本地備檔一份.

YOU CAN GOOGLE.

Программное обеспечение выпуска и Windows Crack Обучение
Нам-Dabei Guanyin Бодхисаттва Нам без митабха
上传的附件:
2011-7-6 00:02
0
游客
登录 | 注册 方可回帖
返回
//