A forum for reverse engineering, OS internals and malware analysis 

Discussion on reverse-engineering and debugging.
 #33265  by Victor43
 Sat Nov 09, 2019 3:12 am
Has anyone tried to reverse Windows 8.1 ntoskrnl.exe ? I'm in search of specific code (Windows Thread Scheduler) and I would tend to believe that this code is likely somewhere in this exe. Which dissembler is best for reviewing this file ? I ran into a screen that indicated that some of the information is packed.
 #33308  by EP_X0FF
 Fri Nov 29, 2019 5:19 am
You may want to look on several Ki* functions first.