Kernel Detective v1.4.1 이 나왔네요~ ^^;;

--------------------------------------------------------------------------------------------

Kernel Detective is a free tool that help you detect, analyze, manually modify and fix some Windows NT kernel modifications. Kernel Detective gives you the access to the kernel directly so it's not oriented for newbies. Changing essential kernel-mode objects without enough knowledge will lead you to only one result ... BSoD !

Kernel Detective gives you the ability to :
1- Detect Hidden Processes.
3- Detect Hidden Threads.
2- Detect Hidden DLLs.
3- Detect Hidden Handles.
4- Detect Hidden Driver.
5- Detect Hooked SSDT.
6- Detect Hooked Shadow SSDT.
7- Detect Hooked IDT.
8- Detect Kernel-mode code modifications and hooks.
9- Disassemble (Read/Write) Kernel-mode/User-mode memory.
10- Monitor debug output on your system.

What's new in v1.4.1 :
- Fixed possible BSOD when scanning processes
- Fixed bug in callbacks scanning
- Enhanced showing files properties and signature verifying
- Skeleton SDK for VS2008 included

What's new in v1.4.0 :
- Added plugins system
- Added support for windows server 2008, seven sp1
- Enhanced stability on NT 6.0+ (windows vista/seven)
- Improved driver scan
- Improved code hook scan
- Fixed bug prevent the tool from working on windows xp
- Fixed bug related to long paths
- Fixed bug in process/driver dumper
- Fixed bug in IDT scan

--------------------------------------------------------------------------------------------

출처 : AT4RE [ http://www.at4re.com ]


'Reverse Engineering > RCE Tools' 카테고리의 다른 글

XueTr 0.40 업데이트~  (0) 2011.06.14
XueTr 0.39 업데이트~  (2) 2011.03.08
Kernel Detective v1.4.1  (2) 2010.12.19
Import REConstructor v1.7e FINAL ~  (0) 2010.10.13
XueTr 0.36 업데이트~  (2) 2010.08.07
올리디버거~ 2.0 Final Release (2010.06.04)  (0) 2010.06.11
YOUR COMMENT IS THE CRITICAL SUCCESS FACTOR FOR THE QUALITY OF BLOG POST
  1. BlogIcon Sone 2010.12.26 16:40 신고  댓글주소  수정/삭제  댓글쓰기

    오우 , 모르고 있었는데 캄사합니다
    제발 프로세스 스캐닝할때 BSOD가 이번엔 고쳐졌으면 좋겠군요