A forum for reverse engineering, OS internals and malware analysis 

Kernel-Mode Development

Forum for discussion about kernel-mode development.
Forum Statistics Last post
Sending value from kernel mode to user mode
by 0x7FFFFFFF  - Fri Dec 20, 2013 12:23 pm
2 Replies 
 3881 Views 		 by R00tKit
 Fri Dec 20, 2013 6:10 pm
SSDT hooking alternative in x64 systems
by 0x7FFFFFFF  - Wed Dec 18, 2013 4:26 pm
4 Replies 
 6744 Views 		 by 0x7FFFFFFF
 Thu Dec 19, 2013 7:18 pm
loading x64 kernel mode code?
by neviim  - Sun Dec 08, 2013 5:05 am
8 Replies 
 19836 Views 		 by Vrtule
 Sat Dec 14, 2013 11:12 am
I Need good kernel developer driver and crawler
by ELWIS1  - Wed Dec 04, 2013 11:15 am
0 Replies 
 2820 Views 		 by ELWIS1
 Wed Dec 04, 2013 11:15 am
Test Hardware
by AaLl86  - Thu Nov 14, 2013 1:52 pm
1 Replies 
 3699 Views 		 by EP_X0FF
 Fri Nov 15, 2013 1:36 pm
can capture TDI_CONNECT event in IE11 on Windows 8.1?
by ithurricane  - Wed Oct 30, 2013 1:16 am
2 Replies 
 4206 Views 		 by ithurricane
 Wed Nov 13, 2013 1:36 am
Windows UEFI startup
by AaLl86  - Mon Oct 14, 2013 1:01 pm
0 Replies 
 3370 Views 		 by AaLl86
 Mon Oct 14, 2013 1:01 pm
ObjectTypeIndex
by takep  - Fri Aug 30, 2013 10:29 pm
8 Replies 
 10298 Views 		 by EP_X0FF
 Mon Sep 09, 2013 1:39 am
Producer Consumer in file system driver
by FileSystem_Driver  - Tue Sep 03, 2013 5:05 am
2 Replies 
 4528 Views 		 by Vrtule
 Sat Sep 07, 2013 11:49 pm
Problem of link usng VisualDDK project
by Tigzy  - Wed Aug 21, 2013 9:04 am
6 Replies 
 7236 Views 		 by Tigzy
 Mon Sep 02, 2013 9:22 am
Question abaout APCs
by Vrtule  - Thu Aug 08, 2013 8:44 pm
3 Replies 
 5096 Views 		 by Vrtule
 Mon Aug 19, 2013 10:22 am
Hook RtlCreateProcessParameters
by FileSystem_Driver  - Sun Aug 04, 2013 10:27 am
3 Replies 
 4861 Views 		 by R00tKit
 Sun Aug 04, 2013 1:13 pm
IRP pending and send to User for confirmation
by prakash502  - Thu Jul 18, 2013 8:19 am
4 Replies 
 5548 Views 		 by prakash502
 Fri Jul 19, 2013 12:15 pm
[WFP]Why classifyContext in classifyFn1 is NULL?
by vs2099  - Wed Jul 17, 2013 2:52 am
0 Replies 
 3079 Views 		 by vs2099
 Wed Jul 17, 2013 2:52 am
syscall or int?
by sn0w  - Thu Jul 11, 2013 4:35 pm
5 Replies 
 6270 Views 		 by rinn
 Sat Jul 13, 2013 3:45 pm
Windows 8 Appcontainer Analysis
by AaLl86  - Sat Jul 06, 2013 10:41 am
2 Replies 
 4157 Views 		 by AaLl86
 Mon Jul 08, 2013 7:31 am
How to defined NtUserCreateWindowEx prototype on X64?
by ithurricane  - Mon Jun 17, 2013 8:20 am
8 Replies 
 8605 Views 		 by myid
 Tue Jun 25, 2013 6:19 pm
How to calculate PML4E/PDPE/PDE/PTE/PhyAddr?
by myid  - Mon Jun 24, 2013 11:37 am
4 Replies 
 5594 Views 		 by myid
 Tue Jun 25, 2013 6:18 pm
PTE question of ring3 address (x64)
by myid  - Sun Jun 23, 2013 11:50 am
3 Replies 
 5418 Views 		 by myid
 Mon Jun 24, 2013 6:54 pm
Driver not unloading (Win8 x64)
by Blacknight  - Sat Jun 22, 2013 6:08 pm
4 Replies 
 5438 Views 		 by Blacknight
 Sun Jun 23, 2013 1:16 pm
how to get ProtectedProcess bit from EPROCESS?
by r3shl4k1sh  - Mon Jun 17, 2013 4:51 pm
3 Replies 
 4648 Views 		 by EP_X0FF
 Tue Jun 18, 2013 2:50 am
Loading driver on x64 systems
by Stylo  - Tue Mar 12, 2013 8:10 pm
15 Replies 
 14981 Views 		 by Microwave89
 Sun May 26, 2013 9:35 am
Accessing EPROCESS Structure on x64 systems
by Stylo  - Sun May 19, 2013 6:52 pm
10 Replies 
 12325 Views 		 by EP_X0FF
 Tue May 21, 2013 3:12 am
[NDIS] Trying to use ndis api's but fail
by Stylo  - Sat Apr 27, 2013 8:25 am
3 Replies 
 4740 Views 		 by Stylo
 Sat May 04, 2013 4:54 pm
Windows NDIS Development - Quick glance
by AaLl86  - Thu Apr 25, 2013 5:02 pm
0 Replies 
 2997 Views 		 by AaLl86
 Thu Apr 25, 2013 5:02 pm
  • 1
  • 6
  • 7
  • 8
  • 9
  • 10
  • 14
 Return to Board Index