madshi.net

Keep playing around. You might even just ask Microsoft on their forum. Maybe first explaining your software is not malicious, etc. Just a guess, they probably want you to go the "legit" route by making some BS extension/plug-in. Anyhow keep messing with it, if it's important to you. Maybe ...

Thanks much. The internals seem to have little documentation if at all. Have you figured out how to reverse these in a meaningful way? From what I understand so far is you submit your application to the MS store as .NET code. At Microsoft they take this code and compile it to platform targets. So if...

Yep, got it to work just had to reboot after setting the access rights for what ever reason. I set the root of the project's folder to "ALL APPLICATION PACKAGES" which in turn sets the DLL or anything else I build in it with the needed rights. Now I'm trying to figure out how to break out ...

I'm not the OP. Just trying to help :-) I wanted to avoid getting into the whole WinRT world my self, but now do some project in it for fun. Also he should try this at least for troubleshooting, under "Settings" , "UPDATES & SECURITY", "For developer": set to "...

Apparently just "ALL APPLICATION PACKAGES" rights (DLL directly, or entire dev folder) alone is not enough. I found this in doing tests recently. With Windows 10 we probably need to have our DLL cross-signed like it says in that article. What I found that does work is to put my DLL in any ...

Use some sort of code signature (search for a pattern of bytes) inside of the right loaded D3D DLL (don't know off hand). Then you can hook the D3D methods of interest directly. To make the signature, look at a D3D9 sample, or make some test code in a debugger and break when you get the interface po...

Go look at your OP here: viewtopic.php?t=5039
I updated it with some info.

Sounds similar to the project I did, at least for this need.
Can you share some details of your project?

Guys I'm facing a big problem. I read some docs on the net and found out that NtQueryKey/RegQueryKey requires that the HKEY param have to be created with KEY_QUERY_VALUE, KEY_READ, or KEY_ALL_ACCESS security flags. And so, if the HKEY is created with KEY_WRITE security attribute, than these functio...

You need to look at the call chains through "advapi32.dll" and "ntdll.dll".

If you can't find them documented, then you can find them your self by
loading the DLL's into IDA Pro et al.
You'll need to do this for every OS you want to support XP,Vista,Win7, etc.

Use "NtQueryKey()" with "KeyNameInformation" (3).
Works on XP anyhow.

That gives you NT/kernel style paths.

Now I wish my self there was a clean way to convert these NT paths into a nice Win32 style.
I made my own detailed parser for it..

comic relief..

Then stop downloading porn, so she has nothing to spy on you about..

Use a debugger. Stick a breakpoint on "connect()" and step through what happens. If it's difficult to put a debugger on the application before it gets to the "connect()" (because it's from a chain of creates), then put a "_asm int3" in there which hopefully will allow y...

I'm hooking recv in client process and I want to send it to the client IMHO that makes next to no sense to in normal client/server relationship concepts. Your client is already receiving the message, why does it need to be sent to it?? Normally recv means incomming, send = outgoing. You want to &qu...

HookAPI() is returning TRUE, which I thought was odd for it still failing some place (and all is working fine in WinXP 32bit). I did a lot of stuff like dumping out the first 16bytes of RegQueryValueExA code right after HookAPI() and renew. At no time were any of the bytes modifed so my assumption w...

Don't guess.
Attach a debugger and find out exactly where the exception happens and why...