Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5

[Share] Source Code Anti Sniffer

#1
Better response on post Source Code Anti Sniffer
Register or login to see this content

Tujuannya:
-kalo ada yg mau sniff inject kita itu pake killtask,,, jd alat sniffnya langsung mental alias close sendiri...
Reply
#2
function EnumProcess(hHwnd: HWND; lParam: integer): boolean; stdcall;
var
title, className: string;
begin
SetLength(className, 255);
SetLength(className, GetClassName(hHwnd, PChar(className), Length(className)));
SetLength(title, 255);
SetLength(title, GetWindowText(hHwnd, PChar(title), Length(title)));
proclist.Add(title + ' ' + className);
result := true;
end;

procedure TForm1.FormCreate(Sender: TObject);
begin
proclist := TStringList.Create;
forbid := TStringList.Create;
forbid.CommaText := 'monsock,dump,sniff'; //---> tambahi app sniffer lainnya
end;

procedure TForm1.FormClose(Sender: TObject; var Action: TCloseAction);
begin
proclist.Free;
forbid.Free;
end;

for i := 0 to proclist.Count - 1 do
begin
for d := 0 to forbid.Count - 1 do
begin
if Pos(forbid[d], LowerCase(proclist.Strings[i])) <> 0 then
close;
end;
end;
end;

end.


yang ini ditambahkan pada bagian mana ya om..?
ranay, proud to be a member of ForNesia Family since Feb 2014.
Reply
#3
(04-17-2014, 03:48 PM)ranay Wrote: function EnumProcess(hHwnd: HWND; lParam: integer): boolean; stdcall;
var
title, className: string;
begin
SetLength(className, 255);
SetLength(className, GetClassName(hHwnd, PChar(className), Length(className)));
SetLength(title, 255);
SetLength(title, GetWindowText(hHwnd, PChar(title), Length(title)));
proclist.Add(title + ' ' + className);
result := true;
end;

procedure TForm1.FormCreate(Sender: TObject);
begin
proclist := TStringList.Create;
forbid := TStringList.Create;
forbid.CommaText := 'monsock,dump,sniff'; //---> tambahi app sniffer lainnya
end;

procedure TForm1.FormClose(Sender: TObject; var Action: TCloseAction);
begin
proclist.Free;
forbid.Free;
end;

for i := 0 to proclist.Count - 1 do
begin
for d := 0 to forbid.Count - 1 do
begin
if Pos(forbid[d], LowerCase(proclist.Strings[i])) <> 0 then
close;
end;
end;
end;

end.


yang ini ditambahkan pada bagian mana ya om..?

kan udah jelas peletakannya di mana tuh...

-di bwah {$R *.dfm}
Quote:function EnumProcess(hHwnd: HWND; lParam: integer): boolean; stdcall;
var
title, className: string;
begin
SetLength(className, 255);
SetLength(className, GetClassName(hHwnd, PChar(className), Length(className)));
SetLength(title, 255);
SetLength(title, GetWindowText(hHwnd, PChar(title), Length(title)));
proclist.Add(title + ' ' + className);
result := true;
end;

-di bagian form create
Quote:procedure TForm1.FormCreate(Sender: TObject);
begin
proclist := TStringList.Create;
forbid := TStringList.Create;
forbid.CommaText := 'monsock,dump,sniff'; //---> tambahi app sniffer lainnya
end;

-di bagian form close
Quote:procedure TForm1.FormClose(Sender: TObject; var Action: TCloseAction);
begin
proclist.Free;
forbid.Free;
end;

-di bagian timer
Quote:procedure TForm1.tmr1Timer(Sender: TObject);
var
i, d: Integer;
begin
if proclist.Count > 0 then proclist.Clear;
EnumWindows(@EnumProcess, 0);

for i := 0 to proclist.Count - 1 do
begin
for d := 0 to forbid.Count - 1 do
begin
if Pos(forbid[d], LowerCase(proclist.Strings[i])) <> 0 then
close;
end;
end;
end;

end.
Reply
#4
ini anti sniff doang apa anti di bongkar juga om ?
Kizuma Wa, proud to be a member of ForNesia Family since Mar 2014.
Reply
#5
ini khusus mematikan program sniff...
tapi kalo program di rename kena juga tuh sniff...
ranay, proud to be a member of ForNesia Family since Feb 2014.
Reply
#6
gini aja cukup om tambah timer 1

timer 1
500
===================
sniffer: TStringlist;
function EnumWindowsProc(hWnd: HWND; lParam: lParam): Bool; stdcall;
procedure GetProcessList;

======
procedure TForm1.Timer3Timer(Sender: TObject);
var
i,d: Integer;
list: TStringList;
begin
list:= TStringList.Create;
list.Text := 'smartsniff'; // filter nama window yang diperkirakan mengandung sniffer
list.Text := StringReplace(list.Text,'|',#13#10,[rfReplaceAll]);
try
sniffer.Clear;
GetProcessList;
for i:=0 to sniffer.Count -1 do begin
for d:=0 to list.Count - 1 do begin
if Pos(list[d],LowerCase(sniffer[i])) <> 0 then
Close; // aplikasi injek di close ketika aplikasi sniffer dijalankan
end;
end;
finally
list.Free;
end;
end;

procedure TForm1.FormCreate(Sender: TObject);
begin
sniffer:= TStringList.Create;
end;
procedure GetProcessList;
begin
EnumWindows(@EnumWindowsProc, 0);
end;
function EnumWindowsProc(hWnd: HWND; lParam: lParam): Bool;
var
Title, ClassName: array[0..255] of Char;
begin
GetWindowText(hWnd, Title, 255);
GetClassName(hWnd, ClassName, 255);
if IsWindowVisible(hWnd) then
sniffer.Add(string(Title)); // mendapatkan nama title window dan dimasukan ke dalam list
end;
mbahgogix, proud to be a member of ForNesia Family since Feb 2014.
Reply
#7
(04-18-2014, 10:32 AM)mbahgogix Wrote: gini aja cukup om tambah timer 1

timer 1
500
===================
sniffer: TStringlist;
function EnumWindowsProc(hWnd: HWND; lParam: lParam): Bool; stdcall;
procedure GetProcessList;

======
procedure TForm1.Timer3Timer(Sender: TObject);
var
i,d: Integer;
list: TStringList;
begin
list:= TStringList.Create;
list.Text := 'smartsniff'; // filter nama window yang diperkirakan mengandung sniffer
list.Text := StringReplace(list.Text,'|',#13#10,[rfReplaceAll]);
try
sniffer.Clear;
GetProcessList;
for i:=0 to sniffer.Count -1 do begin
for d:=0 to list.Count - 1 do begin
if Pos(list[d],LowerCase(sniffer[i])) <> 0 then
Close; // aplikasi injek di close ketika aplikasi sniffer dijalankan
end;
end;
finally
list.Free;
end;
end;

procedure TForm1.FormCreate(Sender: TObject);
begin
sniffer:= TStringList.Create;
end;
procedure GetProcessList;
begin
EnumWindows(@EnumWindowsProc, 0);
end;
function EnumWindowsProc(hWnd: HWND; lParam: lParam): Bool;
var
Title, ClassName: array[0..255] of Char;
begin
GetWindowText(hWnd, Title, 255);
GetClassName(hWnd, ClassName, 255);
if IsWindowVisible(hWnd) then
sniffer.Add(string(Title)); // mendapatkan nama title window dan dimasukan ke dalam list
end;

iya gan...begitu juga bisa
Reply
#8
kalau anti dumb yg enak pke apa om ?
Kizuma Wa, proud to be a member of ForNesia Family since Mar 2014.
Reply
#9
[Only registered and activated users can see links Click here to register]
klo kayak gini gmna ya om?
hanya newbie yg pngin belajar
==___MEMBERI DAN MENERIMA HASIL ___==
:angguk2:
[Only registered and activated users can see links Click here to register]
Reply
#10
(04-19-2014, 09:29 AM)dedy Wrote: [Only registered and activated users can see links Click here to register]
klo kayak gini gmna ya om?
hanya newbie yg pngin belajar

peletakkannya salah tuh...dilihat betul2 sourcenya
Reply
#11
untuk yg paker timer 500, kok pas di run eror disni yaa,, kira2 apanya yg salam master
[Only registered and activated users can see links Click here to register]
kakashi83, proud to be a member of ForNesia Family since Mar 2014.
Reply
#12
Mas kalau Errornya Sperti ini gimana
[Image: 15ydi6p.jpg]
Reply
#13
(04-24-2014, 05:44 AM)denitri Wrote: Mas kalau Errornya Sperti ini gimana
resim

begin di bagian ats dibuang gan...
sprti di bwah.. ketawaaa

Quote:procedure TForm1.tmr1Timer(Sender: TObject);
var
i, d: Integer;
begin
if proclist.Count > 0 then proclist.Clear;
EnumWindows(@EnumProcess, 0);
Reply
#14
klo semacam aplikasi dede berati tinggal di tambah namanya disitu trus pake .exe gak???
DewaPerseus, proud to be a member of suryadewa forum since Dec 2013.

* Diatas langit masih ada langit, we are just big family *

==============fb.com/dewa.perseus==============
==============fb.com/dewa.perseuss==============

Reply
#15
kalau pengen aman dari dede pke baju enigma wa
Kizuma Wa, proud to be a member of ForNesia Family since Mar 2014.
Reply
#16
pake enigma gan, bisa di expiredin bisa di limit launc, dll
pokoknya enak deh hehe, cuma suka kedetect false alarm sama sebagian antivirus, tapi aman ko.
Dx24 © 2014
[Only registered and activated users can see links Click here to register]
Reply
#17
pake baju enigma mksdnya bagimana om
bawahtanah, proud to be a member of ForNesia Family since Apr 2014.
Reply
#18
ya setidaknya cukup lumayan untuk mengelabuhi,,
0n3phr34k, proud to be a member of ForNesia Family since May 2014.
Reply
  


Possibly Related Threads…
Thread Author Replies Views Last Post
  [SHARE] ForNesia Http Injector Source Code ForNesiaFreak 12 4,310 08-18-2021, 08:22 PM
Last Post: paijogalau
  [SHARE] Source Code Check Update Delphi ForNesiaFreak 10 3,102 09-30-2019, 09:44 AM
Last Post: avifornesia