【文件属性】：
文件名称：让windbg支持python调用，自动分析rootkit
文件大小：11.37MB
文件格式：RAR
更新时间：2021-01-01 19:16:05
windbg python rootkit 病毒 Windows 7, 64bit Download pykd.zip from https://github.com/corelan/windbglib/raw/master/pykd/pykd.zip and save it to a temporary location on your computer Check the properties of the file and "Unblock" the file if necessary. Extract the archive. You should get 2 files: pykd.pyd and vcredist_x86.exe Run vcredist_x86.exe with administrator privileges and accept the default values. Copy pykd.pyd to C:\Program Files (x86)\Windows Kits\8.0\Debuggers\x86\winext Open a command prompt with administrator privileges and run the following commands: c: cd "C:\Program Files (x86)\Common Files\Microsoft Shared\VC" regsvr32 msdia90.dll (You should get a messagebox indicating that the dll was registered successfully) Download windbglib.py from https://github.com/corelan/windbglib/raw/master/windbglib.py Save the file under C:\Program Files (x86)\Windows Kits\8.0\Debuggers\x86 ("Unblock" the file if necessary) Download mona.py from https://github.com/corelan/mona/raw/master/mona.py Save the file under C:\Program Files (x86)\Windows Kits\8.0\Debuggers\x86 ("Unblock" the file if necessary)
【文件预览】：
windbglib
----.travis.yml(67B)
----mona.py(628KB)
----.git()
--------index(638B)
--------hooks()
--------config(303B)
--------description(73B)
--------refs()
--------logs()
--------packed-refs(107B)
--------objects()
--------info()
--------HEAD(23B)
----LICENSE(1KB)
----.idea()
--------windbglib.iml(459B)
--------misc.xml(213B)
--------vcs.xml(180B)
--------modules.xml(270B)
--------workspace.xml(12KB)
--------inspectionProfiles()
----.gitignore(15B)
----pykd()
--------pykd03.zip(925KB)
--------pykd.zip(4.67MB)
----README.md(3KB)
----windbglib.py(67KB)