Log in

View Full Version : Kernel reverse engineering tool

Opcode
April 28th, 2004, 15:42
This tool is absolutely amazing:

http://www.opening-windows.com/home.html

Install the program and read the User's Guide.

Regards,
Opcode
CrackZ
April 28th, 2004, 19:43
If it does remotely close to what they say it should.....

I'm definitely shelling out for a copy ;-).

This has many applications for our community and ought to be well worth the $. I actually had this idea about 3 months ago to write something similar for a long term project but figured it'd be an absolute nightmare to implement, the warnings of BSOD's in the user manual seem to back up my thoughts back then.

Regards

CrackZ.
Alorent
April 29th, 2004, 13:38
Hi,

Amazing tool!

Does anyone know some internals of how that tool works? Is it like a debugger putting the Trap Flag?

Thanks
Opcode
April 29th, 2004, 13:54
Quote:
[Originally Posted by Alorent]
Does anyone know some internals of how that tool works? Is it like a debugger putting the Trap Flag?


Yes, it uses Drx registers and single-step debug with the Trap Flag.
The manual inside the ft10eval.exe in the RTF format gives a good
explanation.

In my system, I have created a simple .bat file to run my
trace sessions. The result is saved in the file with the .itr extension.

Regards,
Opc0de