Writing a driver in asm with windows 10 is at a state of experiment.
I have made a zip with some of the needed material.
Source code of a wdm driver,IOCTL,coming from XP and modify
to run with the windows 10 include files.
Translated header,WDM.sdk and mce.sdk who are enough for this driver
A lib with the inline functions needed by the driver.
The code has been a little modify since XP.
The reference in c++ can be found in Windows-driver-samples-master.zip for win 10.
In the directory general\ioctl\wdm.
can be downloaded searching "MSDN WINDOWS 10 driver sample"
There is some changes in the code.
The interest of this driver is the loader who give it a short life.
He is unloaded after used.
Help is welcome.
2020 the attachment failed http://luce.yves.pagesperso-orange.fr/driver_system.zip (http://luce.yves.pagesperso-orange.fr/driver_system.zip)
After some tests , I have only partial answers:
OpenSCManager need administror rights to work (win 10)
The sample asm failed to start the service .
StartService "load of the pilot has been stopped".
The c++ sample do the same thing,any idea ?.
Driver development is effectively limited to professionals, due to the needed code-signing: Driver Signing Policy (https://msdn.microsoft.com/en-us/library/ff548231%28v=vs.85%29.aspx).
An interesting part is:
Installing an Unsigned Driver Package during Development and Test
who say
Quote
Use the F8 Advanced Boot Option
Windows Vista and later versions of Windows support the F8 Advanced Boot Option -- "Disable Driver Signature Enforcement" -- that disables load-time signature enforcement for a kernel-mode driver only for the current system session. This setting does not persist across system restarts.
The Windows 10 family edition don't seem to have the F8 ""Disable Driver Signature Enforcement"
hold down the shift key when you click Restart
google is your friend - lol
OK
for the shift key
First step: the c++ driver in c++ is working in 64 bits.
The c++ 32 bits driver WDM work,I must stay on the path now.
Thanks
Congratulation! You managed to insert your advertising into a 6 year old thread. Hats off!
Quote from: Gunther on April 19, 2022, 11:12:28 PM
Congratulation! You managed to insert your advertising into a 6 year old thread. Hats off!
lol. I noticed that (odd) post but not the link. Mystery solved for me
all of his/her posts contain obscured links. :undecided:
"Smells like Bot spirit." :biggrin:
A sophisticated bot interested in driver programming. :biggrin:
I have watched the name for some time now but there are no links or spam so I have not deleted that name yet.
Look like a link after the point.
Quote from: hutch-- on April 20, 2022, 06:12:31 AM
I have watched the name for some time now but there are no links or spam so I have not deleted that name yet.
All four posts of "Arthur" have links.
Vortex,
Quote from: Vortex on April 20, 2022, 03:59:42 AM
A sophisticated bot interested in driver programming. :biggrin:
in deed, this mixture doesn't exist often. :biggrin:
Quote from: jj2007 on April 20, 2022, 08:55:41 AM
Quote from: hutch-- on April 20, 2022, 06:12:31 AM
I have watched the name for some time now but there are no links or spam so I have not deleted that name yet.
All four posts of "Arthur" have links.
In ultra fine print... 0 point or something
Zoom in to see it...
Our friend is no longer a problem, his posts have been retired and he has been set free to make a pest of himself on the wide world web. :tongue:
Steve,
Quote from: hutch-- on April 21, 2022, 09:18:07 AM
Our friend is no longer a problem, his posts have been retired and he has been set free to make a pest of himself on the wide world web. :tongue:
I suspect he won't be the last spam bot we'll see here.