Build your core wars warrior

Assignment Help Assembly Language

Reference no: EM132573673

Assignment: IAT hooking

Question 1
- This will hook NtQuerySystemInformation(), which is what taskmgr.exe uses in order to list the currently running processes. It will replace this with HookedNtQuerySystemInformation(), which will hide calc.exe

• Steps:
- Compile appInitHookIAT.dll and dllInject.dll
- Place compiled dll somewhere on disk
- Figure out which registry key needs to be edited for AppInit_DLL
- Start calc.exe, start taskmgr.exe, confirm that calc.exe doesn't show up in the list of running processes.
- Remove the malicious dll from AppInit_DLLs and restart taskmgr.exe.
- Confirm calc.exe shows up in the list of running processes.
- (This is a basic "userspace rootkit" technique. Because of this, all entries in this registry key should always be looked upon with suspicion.)
- Prove to me that all this is really really true!

Question 2
Build your Core Wars Warrior!

Attachment:- IAT.rar

Reference no: EM132573673

Questions Cloud

Impact client experience in negative way : Provide and example where using jargon and impact a client experience in a negative way?

Find what amount of personnel costs will be allocated : At the Todd Company, If the number of employees is considered the cost driver, what amount of personnel costs will be allocated to Department A?

Discuss impact of health policies on health services : Discuss the impact of health policies on health services in terms of the money, human resources, and technology used to produce these services.

Determine opening and closing stocks : Determine opening and closing stocks. the closing stock vale was more by RS 4,000 than the opening stock.stock turnover 5 times

Build your core wars warrior : Which is what taskmgr.exe uses in order to list the currently running processes. It will replace this with HookedNtQuerySystemInformation

Internal environmental analysis : Assess the organization's internal environment. Determine the organization's competitive position and the possibilities this provides.

What is the cost per hour for the casting operation : What is the cost per good part produced Fpr a production order of 10,000 (salable) pieces? What is the cost per hour for this casting operation?

Create gantt charts for both the fcfs and johnson rule : Create Gantt charts for both the FCFS and Johnson's rule methods.Compute the total time to complete the jobs using FCFS and using Johnson's rule

Employee motivation : Why is accounting for employee motivation such an important aspect of designing today's jobs? The job characteristics model has five components

User Account

All Pages