Git Product home page Git Product logo

masterhide's Issues

Dangerous assignment

MasterHide/MasterHide/tools.cpp

Line 32 in 3e79de1

PUNICODE_STRING pModuleName = ( PUNICODE_STRING )lpModuleName;

MasterHide/MasterHide/tools.cpp

Line 66 in 3e79de1

PUNICODE_STRING pModuleName = ( PUNICODE_STRING )lpModuleName;

More better:

wchar_t lpModuleName[ MAX_PATH ];
status = ZwQueryVirtualMemory( NtCurrentProcess(), PsGetProcessSectionBaseAddress( Process ), static_cast<MEMORY_INFORMATION_CLASS>(2), lpModuleName, sizeof( lpModuleName ), nullptr );
if ( NT_SUCCESS( status ) )
{
	const auto unModuleNameSize = wcslen(lpModuleName);
	if (unModuleNameSize > 0 )
	{
		AllocateUnicodeString( ProcessImageName, static_cast<USHORT>(unModuleNameSize));
		wcscpy_s( ProcessImageName->Buffer, unModuleNameSize, lpModuleName );
		bReturn = true;
	}
}

Hypervisor not loaded

Hello there. I can't overcome the error. I've been working on this for a long time, but I can't find a solution. Can you tell me what I'm doing wrong and which way to look?

error
error h
error w

[SC] StartService FAILED 31

[SC] StartService FAILED 31:
A device attached to the system is not functioning.

When i try To Start On My Windows 10 i am getting this error.
I am using on My laptop Lenovo ideapad 330 can anyone help in this.

incorrect comments

MasterHide/MasterHide/mh_hooks.h

Line 6 in 3e79de1

// ntoskrnl.exe

MasterHide/MasterHide/mh_hooks.h

Line 15 in 3e79de1

// win32k.sys

correct:

//
// win32k.sys
//
static auto SYSCALL_NTUSERFINDWNDEX = 0x106e;
static auto SYSCALL_NTUSERWNDFROMPOINT = 0x1014;
static auto SYSCALL_NTUSERBUILDWNDLIST = 0x101c;
static auto SYSCALL_NTGETFOREGROUNDWND = 0x103c;
static auto SYSCALL_NTUSERQUERYWND = 0x1010;

//
// ntoskrnl.exe
//
static auto SYSCALL_NTQUERYSYSINFO = 0x0033;
static auto SYSCALL_NTOPENPROCESS = 0x0023;
static auto SYSCALL_NTALLOCVIRTUALMEM = 0x0015;
static auto SYSCALL_NTWRITEVIRTUALMEM = 0x0037;
static auto SYSCALL_NTFREEVIRTUALMEM = 0x001b;
static auto SYSCALL_NTDEVICEIOCTRLFILE = 0x0004;
static auto SYSCALL_NTLOADDRIVER = 0x0004;

Bad size for ProbeForRead

MasterHide/MasterHide/tools.cpp

Line 117 in 3e79de1

ProbeForRead( pImageBase, sizeof( pImageBase ), __alignof( pImageBase ) );

Bad size for ProbeForRead, code trying to check for sizeof(PUCHAR), but want to read sizeof(IMAGE_DOS_HEADER)

ProbeForRead( pImageBase, sizeof(IMAGE_DOS_HEADER), __alignof( pImageBase ) );

end line in logs

MasterHide/MasterHide/shadow_ssdt.cpp

Lines 387 to 400 in 3e79de1

if ( !kaspersky::unhook_shadow_ssdt_routine( SYSCALL_NTUSERBUILDWNDLIST, oNtUserBuildHwndList ) )
DBGPRINT( "Failed to unhook NtUserBuildHwndList" );
if ( !kaspersky::unhook_shadow_ssdt_routine( SYSCALL_NTUSERWNDFROMPOINT, oNtUserWindowFromPoint ) )
DBGPRINT( "Failed to unhook NtUserWindowFromPoint" );
if ( !kaspersky::unhook_shadow_ssdt_routine( SYSCALL_NTUSERFINDWNDEX, oNtUserFindWindowEx ) )
DBGPRINT( "Failed to unhook NtUserFindWindowEx" );
if ( !kaspersky::unhook_shadow_ssdt_routine( SYSCALL_NTGETFOREGROUNDWND, oNtUserGetForegroundWindow ) )
DBGPRINT( "Failed to unhook NtUserGetForegroundWindow" );
if ( !kaspersky::unhook_shadow_ssdt_routine( SYSCALL_NTUSERQUERYWND, oNtUserQueryWindow ) )
DBGPRINT( "Failed to unhook NtUserQueryWindow" );

add \n
correct:

	if ( !kaspersky::unhook_shadow_ssdt_routine( SYSCALL_NTUSERBUILDWNDLIST, oNtUserBuildHwndList ) )
		DBGPRINT( "Failed to unhook NtUserBuildHwndList\n" );

	if ( !kaspersky::unhook_shadow_ssdt_routine( SYSCALL_NTUSERWNDFROMPOINT, oNtUserWindowFromPoint ) )
		DBGPRINT( "Failed to unhook NtUserWindowFromPoint\n" );

	if ( !kaspersky::unhook_shadow_ssdt_routine( SYSCALL_NTUSERFINDWNDEX, oNtUserFindWindowEx ) )
		DBGPRINT( "Failed to unhook NtUserFindWindowEx\n" );

	if ( !kaspersky::unhook_shadow_ssdt_routine( SYSCALL_NTGETFOREGROUNDWND, oNtUserGetForegroundWindow ) )
		DBGPRINT( "Failed to unhook NtUserGetForegroundWindow\n" );

	if ( !kaspersky::unhook_shadow_ssdt_routine( SYSCALL_NTUSERQUERYWND, oNtUserQueryWindow ) )
		DBGPRINT( "Failed to unhook NtUserQueryWindow\n" );

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    ๐Ÿ–– Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. ๐Ÿ“Š๐Ÿ“ˆ๐ŸŽ‰

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google โค๏ธ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.