aljaz/shadow-rs
1
1
Fork 0
mirror of https://github.com/joaoviictorti/shadow-rs.git synced 2026-01-08 18:14:26 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
f8925a3c1707ff643e5a4d6470697e7b92e42a83
shadow-rs/docs/README.md
joaoviictorti f8925a3c17 docs: adding process elevation documentation for system
2024-09-22 21:46:43 -03:00

1.0 KiB
Raw Blame History

Windows Kernel Rootkit in Rust (shadow-rs) Documentation

This documentation provides an overview of the shadow-rs rootkit project and instructions on its usage, features, and development process.

Process

Hide / Unhide Process

Description: This command allows you to hide or reveal specific processes on the system.

shadow.exe process [hide | unhide] --pid <pid>
  • hide: Hide the specified process.
  • unhide: Unhide the specified process.
  • <pid>: The PID of the process you want to hide or reveal.

Example of use:

shadow.exe process hide --pid 1234

This command will hide the process with PID 1234.

Elevate Process to System

Description: This command allows you to hide or reveal specific processes on the system.

shadow.exe process elevate --pid <pid>
  • elevate: Elevate the process
  • <pid>: The PID of the process you want to escalate to system.

Example of use:

shadow.exe process elevate --pid 1234

This command will hide the process with PID 1234.