A forum for reverse engineering, OS internals and malware analysis 

Ask your beginner questions here.
 #24226  by ELExTrO
 Sun Oct 26, 2014 5:28 pm
im a bit new to this forum im used to c++ i have developed many things but mostly cheats for online games however i would like to start in developing SSDT i have been reading a lot of the code presented here however i dont understand almost anything i would like to start with kernel and messing around is there any book anyone can point me out? something like a fresh start on SSDT or ring0? if yes would you mint to post the title??

**Sorry for my bad english its not my native language**
 #24227  by TETYYSs
 Sun Oct 26, 2014 6:34 pm
Wait a sec, you want to develop an SSDT structure?
 #24233  by Vrtule
 Mon Oct 27, 2014 9:01 am

I recommend to look at Rootkits: Subverting the Windows Kernel from Greg Hoglund and James Butler. Yes, it is a quite old one (rfrom 2005) but coverts basic topics of driver development, user/kernel hooking, filter drivers and some other dirty tricks. AFAIR most of the things presented there will work on 32-bit versions of Windows (for W7 at least).

Since the book is old you should not have much trouble finding it on the web.

Best regards