A forum for reverse engineering, OS internals and malware analysis 

Forum for discussion about kernel-mode development.
 #24793  by m5home
 Fri Jan 02, 2015 5:52 am
This is a simple HIPS demo. Include source code.
It can work on WIN7X86 and WIN7X64 (or newer Platform).
***The source code file include some Chinese characters. They are debug / remark strings. You can remove them.
demo.png
demo.png (36.2 KiB) Viewed 572 times
Attachments
(80.71 KiB) Downloaded 120 times
 #25301  by EP_X0FF
 Fri Feb 20, 2015 3:11 pm
Offtop moved.

During discussion which turned into total offtopic we came to conclusion that following code example should be taken with caution, and should not be used without reconsidering it code parts. Also we appreciate topic starter sharings and would like to thank him.

For a constructive criticism of uploaded sample code, please do it without attempts to show-off yourself. If you think your absolute opinion is right (for example you can read from NULL) I have a bad news for you.

For a further offtopics, I would suggest to switch forum.
 #25303  by Brock
 Fri Feb 20, 2015 4:19 pm
My apologies to OP, didn't mean to offend. Thanks for being considerate enough to share code, I know the "idea" may help some so that was generous of you to share

Best Regards,
Brock