mrmcd0x8h - MRMCD-POSTRELEASE-8.3

MetaRheinMain Chaosdays
Zurueck zum Thema -- Fahrplan-Export vom Sat Sep 26 12:04:04 CEST 2009
Got an android phone? Try out the mrmcd0x8 application (available from the android market)

Referenten
lars
Programm
Tag Sonntag - 2009-09-06
Raum C110
Beginn 12:00
Dauer 00:45
Info
ID 3358
Veranstaltungstyp Vortrag
Track lecture
Feedback

Hasta la Vista Broadcasting

building a self-installing keybord-filter with UDP broadcast

I will talk a little about my experiences with adding a kernel UDP-client to an example keyboard-filter (Klog by Clandestiny) and inserting this into an executable that loads this driver (adapted to migbot by Greg Hoglund). The whole exercise shall introduce a bit into coding in the Windows kernel (whether we loathe this system or not). Remarks on the whole process of developing my first Windows code are to be expected.

We will address the topics of Starting a Driver, Hooking into the Keyboard Driver Chain, Starting a Thread in the Kernel and most interesting: doing UDP from inside the Kernel. The latter part being making the difference between Klog10 by clandestiny and my code.

Furthermore we will go through some code that installs the driver.

Finally I will give some hints about how to rip the one or other information from the more or less well documented System.

This talk is intended for all those interested in writing stuff for/in the windows kernel but have not yet found the time to dig their way through the more or less badly documented features.

I intend to share my experiences with my first steps into the windows world, starting with a keyboard filter in kernel mode. Well technically nothing that is actually breaking news, but as concepts are similar at large, we get to see a bit of the difficulties that occur if one tries to fiddle where paged memory is not an option.

As always the talk is in german unless anybody in the audience understands only english.

Anhängte Dateien