does MadC have any file systrm driver kind of thing ?

delphi package - easy access to kernel objects etc.

does MadC have any file systrm driver kind of thing ?

Postby Praveen » Wed Dec 10, 2008 10:26 am

HI Guys please help me out ,My question is -Does madshi have any file system driver kind of thing for his hooking process? :confused: If yes what is the name of driver ?
Praveen
 
Posts: 4
Joined: Wed Dec 10, 2008 9:45 am

Postby madshi » Thu Dec 11, 2008 9:43 am

There is a little kernel mode driver (but not a file system driver) which is responsible for injection hook dlls into newly created processes. Hooking itself doesn't need any help from drivers, only dll injection does. The name of the driver file in the current madCodeHook version is "mchInjDrv.sys". It is by default at runtime temporarily extracted to harddisk, then loaded, then deleted again.

In the upcoming madCodeHook 3.0 the driver will be stored and distributed as a separate file.
madshi
Site Admin
 
Posts: 9470
Joined: Sun Mar 21, 2004 5:25 pm


Return to madKernel

Who is online

Users browsing this forum: No registered users and 3 guests