Search found 10 matches
- Mon Mar 30, 2009 7:07 pm
- Forum: madKernel
- Topic: result if a process fails to start
- Replies: 1
- Views: 11028
result if a process fails to start
I am trying to use NewProcess and my executable is failing to launch. How can I check to see what went wrong? The old way I would use something like: H := WinExec(PChar(t+#32+szfile), lpici.nShow); if H < 32 then MessageBox(lpici.hWnd, pchar(syserrormessage(h)), 'Error', MB_ICONERROR or MB_OK);
- Mon Oct 27, 2008 3:47 am
- Forum: madCodeHook
- Topic: can't seem to hook NtCreateProcess
- Replies: 10
- Views: 8585
can't seem to hook NtCreateProcess
I set up to hook this call but I never see anything call it. Wouldn't this be the lowest level hook for CreateProcess?
- Sat Oct 25, 2008 5:53 pm
- Forum: madCodeHook
- Topic: :Warning:
- Replies: 6
- Views: 6285
- Fri Oct 10, 2008 12:30 pm
- Forum: madKernel
- Topic: mutex owner
- Replies: 10
- Views: 31834
- Fri Oct 10, 2008 1:01 am
- Forum: madKernel
- Topic: mutex owner
- Replies: 10
- Views: 31834
here is the code I am using to get the mutex list: procedure ttest.getmutexlist; var dirhandle: thandle; oadir: jwawindows.pobject_attributes; status: ntstatus; wdir: unicode_string; mut: unicode_string; name: array[0..17] of widechar; mutant: array[0..6] of widechar; ctx: ULONG; p: PDIRECTORY_BASIC...
- Thu Oct 09, 2008 2:27 pm
- Forum: madKernel
- Topic: mutex owner
- Replies: 10
- Views: 31834
- Wed Oct 08, 2008 10:56 pm
- Forum: madKernel
- Topic: mutex owner
- Replies: 10
- Views: 31834
I know it *can* be done as somehow ProcessExplorer lists the mutex of a given process. I just want to do the reverse of that. Having said that when I use madkernel to get at the information it always returns my process as the owner. When I try to get the handle manually it always says ACCESS DENIED ...
- Mon Oct 06, 2008 1:35 pm
- Forum: madKernel
- Topic: mutex owner
- Replies: 10
- Views: 31834
mutex owner
Is it possible to find the process owner of a given mutex? If so, how? Thanks!
- Fri Aug 18, 2006 2:31 pm
- Forum: madCodeHook
- Topic: getcurrentsessionid
- Replies: 3
- Views: 3413
Ahh, ok. I was thinking of a session and handle. The problem is I get a BSOD the second I call InjectLibrarySession. I have a service that waits for an IPC message telling it to inject. The dll is currently a dummy. It has no functions at all as I was hoping this would aid debugging. The call inject...
- Fri Aug 18, 2006 2:41 am
- Forum: madCodeHook
- Topic: getcurrentsessionid
- Replies: 3
- Views: 3413
getcurrentsessionid
I am trying to use the getcurrentsessionid function but it always returns 0
Is there something obvious I am missing that needs to be done to initialize this? Thanks!
Is there something obvious I am missing that needs to be done to initialize this? Thanks!