Kernel Detective v1.4.1
Kernel Detective is a free tool that help you detect, analyze, manually modify and fix some Windows NT kernel modifications. Kernel Detective gives you the access to the kernel directly so it's not oriented for newbies. Changing essential kernel-mode objects without enough knowledge will lead you to only one result ... BSoD !
Kernel Detective gives you the ability to :
1- Detect Hidden Processes.
3- Detect Hidden Threads.
2- Detect Hidden DLLs.
3- Detect Hidden Handles.
4- Detect Hidden Driver.
5- Detect Hooked SSDT.
6- Detect Hooked Shadow SSDT.
7- Detect Hooked IDT.
8- Detect Kernel-mode code modifications and hooks.
9- Disassemble (Read/Write) Kernel-mode/User-mode memory.
10- Monitor debug output on your system.
What's new in v1.4.0 :
- Added plugins system
- Added support for windows server 2008, seven sp1
- Enhanced stability on NT 6.0+ (windows vista/seven)
- Improved driver scan
- Improved code hook scan
- Fixed bug prevent the tool from working on windows xp
- Fixed bug related to long paths
- Fixed bug in process/driver dumper
- Fixed bug in IDT scan
SHA-256 :
3C0D5426A2FE65EB72FB4F6A396C4CF83285B38EAE188B41C6 F8D048157FF6DF
http://www.at4re.com/download.php?view.2
http://www.mediafire.com/?94hb182iirjpvcr
Kernel Detective v1.4.1
What's new in v1.4.1 :- Fixed possible BSOD when scanning processes
- Fixed bug in callbacks scanning
- Enhanced showing files properties and signature verifying
- Skeleton SDK for VS2008 included
Download Link :
http://www.mediafire.com/?o4mwekn7jtizdi4
SHA-256 :
619E9AE64CC9DE82DD35CB3469D413E8C78A57EC8021B8450B6EAD15526562D7 第一次见这个软件,下来试用一下 进来支持一下吧!
不错的东西 支持一下老大 正好需要它 哈哈 谢谢共享 莱用用 哈哈 ~ 不错哦 可以拿来过保护的可惜是英文版本的 不知道为什么 这个我一直找不到官方网页~