-
禁用windows系统ctrl+alt+del
通过注入的方式禁用windows的Ctrl+alt+del。
- 方式一:挂起winlogon.exe进程
缺点:如果开机挂起过早,可能导致系统无法进入。关机的时候如果没有恢复winlogon.exe会导致系统无法关机(卡界面)。
- 方式二:注入winlogon.exe
目前仅仅针对64位程序有效
#include#include #include #include void RaiseToDebug(){ HANDLE hToken; TOKEN_PRIVILEGES tkp; if(OpenProcessToken(GetCurrentProcess(), TOKEN_ADJUST_PRIVILEGES | TOKEN_QUERY, &hToken)){ LookupPrivilegeValue(NULL, SE_DEBUG_NAME, &tkp.Privileges[0].Luid); tkp.PrivilegeCount = 1; tkp.Privileges[0].Attributes = SE_PRIVILEGE_ENABLED; AdjustTokenPrivileges(hToken, FALSE, &tkp, sizeof(tkp), NULL, NULL); CloseHandle(hToken); } } bool Start(){ auto module = GetModuleHandleA("rpcrt4.dll"); auto func = GetProcAddress(module, "RpcServerTestCancel"); if(func){ auto snapshot = CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS, 0); PROCESSENTRY32 pe32; pe32.dwSize = sizeof(PROCESSENTRY32); if(Process32First(snapshot, &pe32)){ do{ if(!strcmp(pe32.szExeFile, "winlogon.exe")){ auto hProcess = OpenProcess(PROCESS_ALL_ACCESS, FALSE, pe32.th32ProcessID); if(hProcess){ DWORD oldpp; if(VirtualProtectEx(hProcess,(void *)func, 0x100,PAGE_EXECUTE_READWRITE ,&oldpp)){ unsigned char buf[] = {0x33,0xc0,0xc3}; WriteProcessMemory(hProcess, (void *)func,buf, sizeof(buf), NULL); } CloseHandle(hProcess); } } }while(Process32Next(snapshot, &pe32)); } } return true; } bool Stop(){ auto module = GetModuleHandleA("rpcrt4.dll"); auto func = GetProcAddress(module, "RpcServerTestCancel"); if(func){ auto snapshot = CreateToolhelp32Snapshot(TH32CS_SNAPPROCESS, 0); PROCESSENTRY32 pe32; pe32.dwSize = sizeof(PROCESSENTRY32); if(Process32First(snapshot, &pe32)){ do{ if(!strcmp(pe32.szExeFile, "winlogon.exe")){ auto hProcess = OpenProcess(PROCESS_ALL_ACCESS, FALSE, pe32.th32ProcessID); if(hProcess){ DWORD oldpp; if(VirtualProtectEx(hProcess,(void *)func, 0x100,PAGE_EXECUTE_READWRITE ,&oldpp)){ WriteProcessMemory(hProcess, (void *)func,(void *)func, 3, NULL); } CloseHandle(hProcess); } } }while(Process32Next(snapshot, &pe32)); } } return true; } int main(){ LoadLibraryA("rpcrt4.dll"); RaiseToDebug(); //禁用ctrl+alt+del Start(); getchar(); //启用ctrl+alt+del Stop(); return 1; } - 1
- 2
- 3
- 4
- 5
- 6
- 7
- 8
- 9
- 10
- 11
- 12
- 13
- 14
- 15
- 16
- 17
- 18
- 19
- 20
- 21
- 22
- 23
- 24
- 25
- 26
- 27
- 28
- 29
- 30
- 31
- 32
- 33
- 34
- 35
- 36
- 37
- 38
- 39
- 40
- 41
- 42
- 43
- 44
- 45
- 46
- 47
- 48
- 49
- 50
- 51
- 52
- 53
- 54
- 55
- 56
- 57
- 58
- 59
- 60
- 61
- 62
- 63
- 64
- 65
- 66
- 67
- 68
- 69
- 70
- 71
- 72
- 73
- 74
- 75
- 76
- 77
- 78
- 79
- 80
- 81
- 82
- 83
-
相关阅读:
水生植物拉丁文及缩写
VS2019+QT5.15调用动态库dll带有命名空间
RepVGG:让VGG风格的ConvNet再次伟大起来
Cat Online Judge 判题系统
解决 Xshell 无法使用 zsh 的 prompt style
代码随想录day51:动态规划股票最后一周
跨越障碍:解决复杂网页数据提取的挑战
C++ Qt 学习(九):模型视图代理
安防视频监控管理平台EasyCVR定制首页开发与实现
R语言survival包clogit函数构建条件logistic回归模型、使用summary函数查看模型汇总统计信息
- 原文地址:https://blog.csdn.net/CAir2/article/details/133138321
