|
|
|
|
#1
09-22-2009, 07:11
|
|||
|
|||
|
Hi piccolo,
In this instance it wasn't a rights issue - it was the NULL terminated key name. I was hoping to modify the source code from Sysinternal's RegHide but my C skillz are so weak that I can't even get the original source to compile without a bunch of errors such as : 41 C:\RegHide\REGHIDE.C invalid conversion from `int (*)()' to `NTSTATUS (*)(void*, DWORD, OBJECT_ATTRIBUTES*, DWORD, UNICODE_STRING*, DWORD, long unsigned int*)' So I guess I'll have to knock up a little MASM framework to do it in this coming weekend when I get some free time (hopefully!). I'm aiming to base it on NtCreateKey and NtDeleteKey as per that source - since it appears the NtDeleteKey (according to the brief look I've had) relies on a handle being passed to it created by a successful call to NtCreateKey or NtOpenKey. Damn my feeble C skills - its times like this that being entirely self taught shows that I had a poor teacher!  bb 
|
 |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Mark memory page as invalid | Kerlingen | General Discussion | 3 | 08-29-2016 19:49 |
| problem with idr "invalid oep" | SubzEro | General Discussion | 2 | 09-14-2015 00:19 |
| Controling access to HDD | Hero | General Discussion | 2 | 08-09-2006 18:13 |
| Softice: hwnd -> invalid window handle | dreamershl | General Discussion | 2 | 04-19-2004 09:58 |
Hybrid Mode
