#1
|
|||
|
|||
Reversed kernel code
http://www.chapeaux-noirs.org/win/kernel_reversing/
|
#2
|
|||
|
|||
Yeah he is a pretty cool guy, unforunately a lot changed in XP...but the Crazyl0rd's site is still good. I've noticed however that with some kernel knowledge and IDA+WinDBG+SoftICE+Debug Symbols you can pretty much figure it out by yourself.
Oh and check out www.reactos.com...we are re-writing the NT Kernel from scratch (no diassesmbling is allowed, only profiling and knowledge or re-implementations) so some of our code is very close to how NT really works (even though it's not the exact same thing, because we can't reverse). Best regards, Alex Ionescu http://www.relsoft.net |
#3
|
|||
|
|||
It's really a cool site, lots of good stuff, .
|
Thread Tools | |
Display Modes | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Reversed Intel FSP Source Code - Pulled from Purism (Notebook Manufacturer) Site | ilikenwf | Source Code | 1 | 06-02-2018 07:25 |
Load and Execute unsigned code into kernel in Windows 10x64 | TechLord | General Discussion | 1 | 03-12-2017 16:30 |
Hades:Windows kernel driver lets reverse engineers monitor user and kernel mode code | sh3dow | Source Code | 0 | 05-12-2016 03:15 |