Memory cloaking driver (Windows 7)

Wanted: Windows 7 device driver (ring 0) C source code that can be used to cloak memory in a userland process. Goal: Patching a userland process .IMAGE (code redirection/hooking) that has internal CRC self-checks -> Bypassing them. Driver must work on Windows 7 64bits (-> driver signing bypass + patchguard disabled -> no problem)


1. Userland application creates & starts memory cloaking service (driver)

2. Userland application launches target (CreateProcess)

3. Userland application calls driver -> CloakVirtualMemoryOnRead( hTargetProcess, dwVMemStart, dwVMemEnd, pFakeMem )

Memory is now cloaked, that means:

1. Reading the protected virtual memory will trigger a (forced) PAGE_FAULT

2. The PAGE handler decides whether the PAGE request was OnRead or OnExecute

2a. OnRead: Redirect the request to pFakeMem (cloak)

2b. OnExecute: Return the "real" memory (e.g. patched)

The userland application should be unable to detect the .CODE patches by reading them directly (internal = direct access) nor by the use of ReadProcessMemory for instance.

Kemahiran: Himpunan, Pengaturcaraan C

Lihat lagi: memory cloaking, windows c programming, virtual device, self programming, programming on windows, programming in assembly, goal programming, driver 1, c programming on windows, assembly service, assembly process, assembly direct, Windows Driver, windows 7, windows 2012, patching, memory, memory c, driver, device driver, code signing, c++ driver, c driver, bypass patchguard, windows virtual driver

Tentang Majikan:
( 0 ulasan ) Stuttgart, Germany

ID Projek: #1574640

3 pekerja bebas membida secara purata $2000 untuk pekerjaan ini


Hi. I am Rootkit developer. Please read my private message. You will be interested in me. Thanks.

$250 USD dalam 11 hari
(1 Ulasan)

Security profressional, Windows kernel development expert

$5500 USD dalam 30 hari
(0 Ulasan)

HOtmail Account Available All Account must fresh & quality 72 hours replacement time all account creating time using USA female first name & last name with random something we accepted creating your choice Lagi

$250 USD dalam sehari
(0 Ulasan)