Skip to content
/ Hide-FS Public

Inject dll to explorer.exe and hide file from process.

License

GPL-3.0 license
21 stars 13 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

proxytype/Hide-FS

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
Loader
Loader
 
 
Payload
Payload
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Hide-FS

Inject dll to explorer.exe and hide file from process.

Requierments:

Microsoft Detours Library - https://github.com/microsoft/Detours

Compile:

  1. Unzip source code, open command line and enter to source directory
  2. SET DETOURS_TARGET_PROCESSOR=X64
  3. C:\Program Files (x86)\Microsoft Visual Studio\2019\Community\VC\Auxiliary\Build\vcvars64.bat
  4. NMAKE

Add detours.lib to Linker additional libraries.

Hooked Functions:

  • NtQueryDirectoryFile
    Microsoft try to hide it, The address to the function is dynamic, you need to find it yourself.
  • RtlUnicodeStringToAnsiString

About

Inject dll to explorer.exe and hide file from process.

Topics

windows security exploit vulnerability vulnerability-research

Resources

Readme

License

GPL-3.0 license
Activity

Stars

21 stars

Watchers

6 watching

Forks

13 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages