qwqdanchun
/
BypassDriverDetection_And_Kill360Process
mirror of https://github.com/qwqdanchun/BypassDriverDetection_And_Kill360Process.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
16 Commits 1 Branch 0 Tags 2 MiB
C 100%
Go to file
KID 058da03357
Add files via upload 		2018-06-07 20:19:52 +08:00
Kill360Process.c Add files via upload 2018-05-21 15:08:26 +08:00
KillAndBypassReport.docx Add files via upload 2018-05-21 15:08:26 +08:00
KillDriver Add files via upload 2018-06-07 20:19:52 +08:00
README.md Update README.md 2018-05-22 09:50:18 +08:00

README.md

BypassDriverDetection_And_Kill360Process

环境Win7 7600 x86

360版本11.4.0.2002

目标1绕过360加载驱动检测。

目标2实现结束360关键进程。

一、Ring3绕过360加载驱动检测

1、Statement

2、Extend

二、实现结束360关键进程

1、MiIsAddressValidEx

2.1、ZeroProcessMemory

2.2、杀掉进程其它实现:

3、分析Win2000源码

3.1、MmIsAddressValid

3.2、ProbeForRead()

3.3、ProbeForWrite()

3.4、总结:

三、实现代码:

1、结束进程代码