A forum for reverse engineering, OS internals and malware analysis 

Forum Statistics Last post
Kernel-Mode Development
Forum for discussion about kernel-mode development.
329 Topics 
1973 Posts
Re: Stealth Hook
 by AxtMueller
 Tue Mar 26, 2019 12:41 am
User-Mode Development
Forum for discussion about user-mode development.
126 Topics 
822 Posts
Re: How hook EnumWindows() to…
 by Brock
 Tue Apr 16, 2019 12:42 pm
Forum Statistics Last post
Device Driver Development for Beginners - Reloaded
by Evilcry  - Mon Oct 04, 2010 6:14 am
24 Replies 
 107531 Views
 by Pendragon
 Sun Oct 28, 2018 1:25 pm
Assembler Disassembler Engines
by Dreg  - Mon Mar 15, 2010 9:17 am
16 Replies 
 73883 Views
 by tangptr
 Mon Mar 20, 2017 11:53 am
2 Replies 
 222 Views
 by Brock
 Tue Apr 16, 2019 12:42 pm
Stealth Hook
by c6754  - Sat Feb 16, 2019 1:16 pm
1 Replies 
 756 Views
 by AxtMueller
 Tue Mar 26, 2019 12:41 am
0 Replies 
 334 Views
 by j4ck
 Wed Mar 06, 2019 4:17 am
2 Replies 
 1012 Views
 by pointer
 Fri Feb 08, 2019 1:26 pm
4 Replies 
 1517 Views
 by pointer
 Sun Jan 27, 2019 6:33 pm
How to emulate LOW IL ?
by zer0cat  - Tue Jan 22, 2019 7:25 pm
6 Replies 
 1919 Views
 by Vrtule
 Fri Jan 25, 2019 10:13 pm
Detecting Physical Memory Mapping
by sdf90090  - Mon Jan 21, 2019 4:14 pm
1 Replies 
 868 Views
 by gandolf
 Thu Jan 24, 2019 3:19 am
Read Unknown Kernel Address In A Safe Way
by AxtMueller  - Mon Dec 31, 2018 3:44 pm
2 Replies 
 1466 Views
 by AxtMueller
 Thu Jan 17, 2019 7:36 pm
[C] HTTP-Downloader
by KarNak  - Sat Jan 12, 2019 11:32 am
5 Replies 
 1810 Views
 by AxtMueller
 Tue Mar 26, 2019 12:36 am
[C] UserMode = AdminMode Linux
by KarNak  - Sat Jan 12, 2019 11:39 am
1 Replies 
 730 Views
 by nimaarek
 Sat Jan 12, 2019 3:22 pm
Hook and replace Win32 application functions
by KarNak  - Sat Jan 12, 2019 11:29 am
0 Replies 
 580 Views
 by KarNak
 Sat Jan 12, 2019 11:29 am
Avoid undocumented API calls (RtlImageNtHeader)?
by j4ck  - Wed Dec 19, 2018 3:17 am
2 Replies 
 1584 Views
 by j4ck
 Wed Dec 19, 2018 4:12 am
0 Replies 
 1321 Views
 by pointer
 Wed Nov 28, 2018 12:29 pm
1 Replies 
 1567 Views
 by mrfearless
 Sun Oct 07, 2018 6:50 pm
PG check
by orwell  - Sun Sep 16, 2018 9:30 am
4 Replies 
 3085 Views
 by tangptr
 Tue Sep 18, 2018 12:33 pm
1 Replies 
 1985 Views
 by mrfearless
 Mon Sep 17, 2018 3:08 am
4 Replies 
 4720 Views
 by ptr
 Thu Aug 23, 2018 11:54 am
3 Replies 
 3204 Views
 by rkhunter
 Wed Aug 22, 2018 11:17 am
Probe kernel memory for read
by easy  - Sun Aug 12, 2018 7:45 am
3 Replies 
 10865 Views
 by tangptr
 Tue Aug 14, 2018 3:35 am
Hooking the offical way?
by rrr_rrr_111  - Mon Aug 06, 2018 8:23 pm
8 Replies 
 7620 Views
 by tangptr
 Mon Aug 13, 2018 7:09 am
Handling support for EFI partitions
by lundman  - Thu Jul 19, 2018 5:12 am
0 Replies 
 2327 Views
 by lundman
 Thu Jul 19, 2018 5:12 am
Design Question
by xjk220  - Sun Jul 15, 2018 2:28 pm
1 Replies 
 2355 Views
 by Brock
 Sun Jul 15, 2018 6:31 pm
Detecting Test Mode
by Sagaantheepic  - Tue Jul 10, 2018 12:01 pm
7 Replies 
 7314 Views
 by EP_X0FF
 Fri Jul 13, 2018 4:52 pm