Quote:
|
Originally Posted by zEr0
i think that everything is about RING mode, even SICE has your own sys driever in %SystemRoot%\system32\drivers
|
and some API hooking ,modifiyng registry,IDT,GDT and other...
Good start point iz learnig how icedump or iceext work from his source code ..
Sorry for my bad english iam only human ;o))