Search found 52 matches
- Wed Sep 02, 2009 7:57 am
- Forum: fun talk
- Topic: New Security Tool Released
- Replies: 22
- Views: 61530
Much more effective than DBS's new tool, update from HookShark, forget the name now. He mainly released that tool to help detect loaded modules, also with options to erase ldr entry for specific usage, but with the new tool (DebugHook i think) it has many more options and routines. I hope you contin...
- Wed Aug 19, 2009 2:25 pm
- Forum: fun talk
- Topic: New Security Tool Released
- Replies: 22
- Views: 61530
- Mon Aug 17, 2009 9:05 am
- Forum: fun talk
- Topic: New Security Tool Released
- Replies: 22
- Views: 61530
- Sat Aug 15, 2009 4:46 pm
- Forum: madCodeHook
- Topic: An idea to log the visited URLs?
- Replies: 9
- Views: 9173
You could do this easier with something like php and add as a plugin for your application, its not so simple via the application in c++ etc. Its also pretty undocumented as it is classed as underground activity and could be seen as a form of spyware, im sure your doing this for the correct reasons b...
- Sat Aug 15, 2009 4:41 pm
- Forum: fun talk
- Topic: .sys injection
- Replies: 5
- Views: 16444
without all the required instructions you provided i managed to create a simple injector to load the driver into memory pretty much same way as i inject dll's but by using services extracted from device manager. now i can host my driver and spawn it at users request without storing on local drive. t...
- Fri Aug 14, 2009 2:33 pm
- Forum: fun talk
- Topic: .sys injection
- Replies: 5
- Views: 16444
- Thu Aug 13, 2009 5:57 pm
- Forum: fun talk
- Topic: .sys injection
- Replies: 5
- Views: 16444
.sys injection
hi, i have a custom driver that manipulates drawing in a target process hl2.exe and i need some help on injection methods, i could just load via a batch app but it there other ways like what you do for dll injection?
- Wed Jun 03, 2009 7:52 am
- Forum: madCodeHook
- Topic: Hooking ExitProcess?
- Replies: 3
- Views: 4846
- Mon Dec 29, 2008 10:13 am
- Forum: fun talk
- Topic: Debug Hook v1.2
- Replies: 10
- Views: 34071
- Sun Dec 28, 2008 12:12 pm
- Forum: fun talk
- Topic: Debug Hook v1.2
- Replies: 10
- Views: 34071
- Sat Dec 27, 2008 11:42 am
- Forum: fun talk
- Topic: AutoSS v1.0
- Replies: 0
- Views: 14766
AutoSS v1.0
********************************************* *************** AutoSS v1.0 ***************** ********************************************* *Credits: Gabe Newell * * GD * * Venoma * * Organner * * DeepBlueSea * * wav * * * *Run .exe then Press corresponding key and a* *screenshot will be generated. A...
- Sat Dec 27, 2008 11:27 am
- Forum: madCodeHook
- Topic: help wife is spying on me
- Replies: 2
- Views: 3414
- Sun Aug 31, 2008 3:47 pm
- Forum: madCodeHook
- Topic: [Source]Vista DLL Injection
- Replies: 1
- Views: 4281
[Source]Vista DLL Injection
Might help some of you :) #include <stdio.h> #include <windows.h> #include <tlhelp32.h> static bool AdjustSingleTokenPrivilege(HANDLE TokenHandle, LPCTSTR lpName, DWORD dwAttributes) { TOKEN_PRIVILEGES tp; tp.PrivilegeCount = 1; tp.Privileges[0].Attributes = dwAttributes; if (!LookupPrivilegeValue(N...
- Sat Aug 30, 2008 11:39 am
- Forum: madCodeHook
- Topic: HookCode(), hook where your not supposed to?
- Replies: 3
- Views: 3687
- Thu Aug 28, 2008 8:38 pm
- Forum: madCodeHook
- Topic: get the file name being deleted in NtSetInformation api
- Replies: 10
- Views: 6060
KeBugCheckEx is the loop hole there. I run Device Drivers through XP/Vista 32/64 without much problem, however i agree for userland protection you need a device driver to hide every trade your ring3 app has or block any intrusion from another ring3 app. Also on Vista Kernel it is a good thing UAC is...