›› 2014, Vol. 14 ›› Issue (2): 0-0.

• 信息网络安全 •    下一篇

一种基于Windows内核驱动的可疑样本采集系统的设计与实现

张涛;焦英楠;禄立杰;文伟平   

  • 作者简介:北京大学软件与微电子学院,北京,102600%国家计算机网络应急技术处理协调中心,北京029
  • 基金资助:
    国家自然科学基金(61170282)

The Design and Implementation of Suspicious Sample Collection System based on Windows Kernel Driver

ZHANG Tao%JIAO Ying-nan%LU Li-jie%WEN Wei-ping   

摘要: The study of suspicious sample collection system with the rule-based scanning and procedures behavior analysis based on Windows kernel driver will greatly enhance the comprehensiveness and accuracy of sample collection, and it has important signiifcance t

Abstract: kernel driver%suspicious sample collection%rule base