Ditutup

Memory cloaking driver (Windows 7)

Wanted: Windows 7 device driver (ring 0) C source code that can be used to cloak memory in a userland process. Goal: Patching a userland process .IMAGE (code redirection/hooking) that has internal CRC self-checks -> Bypassing them. Driver must work on Windows 7 64bits (-> driver signing bypass + patchguard disabled -> no problem)

Function:

1. Userland application creates & starts memory cloaking service (driver)

2. Userland application launches target (CreateProcess)

3. Userland application calls driver -> CloakVirtualMemoryOnRead( hTargetProcess, dwVMemStart, dwVMemEnd, pFakeMem )

Memory is now cloaked, that means:

1. Reading the protected virtual memory will trigger a (forced) PAGE_FAULT

2. The PAGE handler decides whether the PAGE request was OnRead or OnExecute

2a. OnRead: Redirect the request to pFakeMem (cloak)

2b. OnExecute: Return the "real" memory (e.g. patched)

The userland application should be unable to detect the .CODE patches by reading them directly (internal = direct access) nor by the use of ReadProcessMemory for instance.

Kemahiran: Himpunan, Pengaturcaraan C

Lihat lebih lanjut: memory cloaking, virtual device, self programming, goal programming, driver 1, windows driver, windows 7, windows 2012, patching, memory, memory c, Driver, device driver, code signing, c driver, windows virtual driver, windows service application, patched, virtual memory, cloak redirect, crc code, windows virtual, windows application service, windows device driver programming, detect virtual

Tentang Majikan:
( 0 ulasan ) Stuttgart, Germany

ID Projek: #1574640

3 pekerja bebas membida secara purata $2000 untuk pekerjaan ini

WithYouSoft

Hi. I am Rootkit developer. Please read my private message. You will be interested in me. Thanks.

$250 USD dalam 11 hari
(1 Ulasan)
0.0
JohnnyRedbird

Security profressional, Windows kernel development expert

$5500 USD dalam 30 hari
(0 Ulasan)
0.0
Beare23

HOtmail Account Available All Account must fresh & quality 72 hours replacement time all account creating time using USA female first name & last name with random something we accepted creating your choice Lagi

$250 USD dalam sehari
(0 Ulasan)
0.0