roestvrijstaal / oark Goto Github PK

View Code? Open in Web Editor NEW

0.0 0.0 0.0 2.4 MB

Automatically exported from code.google.com/p/oark

C 87.84% TeX 10.02% Python 0.01% Batchfile 0.25% C++ 1.81% Makefile 0.08%

oark's People

Contributors

Watchers

oark's Issues

[deleted issue]

[deleted issue]

Hidden Process Detection - CsrWalker

Purpose of new features:

Branch of new features: Detect hidden process - CsrWalker

When reviewing my code changes, please focus on:

After the review, I'll merge this branch into: /trunk

Original issue reported on code.google.com by laura.garcia.rico on 29 Nov 2010 at 4:13

IDT hooking detection

Purpose of new features: Detect IDT hooking

After the review, I'll merge this branch into: /trunk

Original issue reported on code.google.com by [email protected] on 21 Nov 2010 at 11:39

SYSENTER Hook

Purpose of new features:
Detect Sysenter hook.

Original issue reported on code.google.com by [email protected] on 23 Dec 2010 at 1:13

IAT / EAT Hooking Detection

Purpose of new features:
Detects IAT / EAT Hook

Branch of new features:
OARKEATIAT/

After the review, I'll merge this branch into: /trunk

Original issue reported on code.google.com by [email protected] on 23 Dec 2010 at 11:32

[deleted issue]

[deleted issue]

IDT INFO STUFF

Purpose of code:

shows IDT info using kpcr, idt instructions ...

After the review, I'll merge this into:
/trunk

Original issue reported on code.google.com by [email protected] on 14 Nov 2010 at 6:41

Render API.

Purpose of new features:
A global render API in order to homogenize OARK output.

No Branch for this new feature.

Original issue reported on code.google.com by [email protected] on 20 Dec 2010 at 11:35

pebhooking detection

Purpose of code pebhooking detection:

After the review, I'll merge this into:
/trunk

Original issue reported on code.google.com by [email protected] on 15 Nov 2010 at 7:35

SSDT System / Shadow Hooking Detection

Purpose of code SSDT hooking detection:

* Detection of any hook in SSDT System / SSDT Shadow

After the review, I'll merge this branch into:
/trunk

Original issue reported on code.google.com by [email protected] on 21 Nov 2010 at 10:55

Only a Single Instance and only one handle to device

Purpose of code Only a Single Instance and only one handle to device

After the review, I'll merge into:
/trunk

Original issue reported on code.google.com by [email protected] on 15 Nov 2010 at 7:39

Inline Hooking

Purpose of new features:
Detect inline hooks on process/kernel modules

Original issue reported on code.google.com by [email protected] on 8 Dec 2010 at 3:48

Call Gates Stuff and LDT Forward

Purpose of new features:

Call Gates Stuff and LDT Forward

Branch of new features: call_gates

After the review, I'll merge this branch into: /trunk

Original issue reported on code.google.com by [email protected] on 14 Dec 2010 at 2:29

Call Gates stuff

Purpose of code Call Gates stuff.

After the review, I'll merge this branch into:
/trunk

Original issue reported on code.google.com by [email protected] on 20 Nov 2010 at 5:06

Unload Load driver

Some improvements in the load and unload of the driver from user mode app.

I'll merge this into: 
/trunk

Original issue reported on code.google.com by [email protected] on 14 Nov 2010 at 1:54

Xrayn PoC Detection.

Purpose of code "Xrayn PoC Detection":

* Detects processes using "Xrayn" technic.

Branch of new features:
OARKXrayn/

After the review, I'll merge this branch into: /trunk

Original issue reported on code.google.com by [email protected] on 9 Dec 2010 at 9:35

roestvrijstaal / oark Goto Github PK

oark's People

Contributors

Watchers

oark's Issues

Recommend Projects

Recommend Topics

Recommend Org