Skip to content
/ driverspy Public

WRITE_PORT_UCHAR/USHORT/ULONG functions tracer for reverse engineers (Windows Kernel)

License

GPL-2.0 license
4 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

rvolkov91/driverspy

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

README.rus

README.rus

 
 

driverspy.c

driverspy.c

 
 

driverspy.h

driverspy.h

 
 

hooks.c

hooks.c

 
 

hooks.h

hooks.h

 
 

makefile

makefile

 
 

mod_info.c

mod_info.c

 
 

mod_info.h

mod_info.h

 
 

sources

sources

 
 

splice.c

splice.c

 
 

splice.h

splice.h

 
 

Repository files navigation

driverspy

WRITE_PORT_UCHAR/USHORT/ULONG functions tracer for reverse engineers (Windows Kernel)

How to compile:

Use Microsoft DDK 2005 to compile this driver. This driver hooks only WRITE_PORT_UCHAR\USHORT\ULONG functions, modify driver to hook other functions. This driver hooks only "cmudaxp.sys" module. Change this to hook another module. The compiler will make the driverspy.sys file for you.

How to use:

Use Windows XP Service Pack 3. Use any driver loading\unloading utility like DrvLoader (http://www.codeproject.com/Articles/31905/A-C-class-wrapper-to-load-unload-device-drivers). Use DbgView utility from Mark Russinovich to view any messages posted by the driver. Both utilities are provided.

Visit http://v1ron.ru for more information.

About

WRITE_PORT_UCHAR/USHORT/ULONG functions tracer for reverse engineers (Windows Kernel)

Resources

Readme

License

GPL-2.0 license
Activity

Stars

4 stars

Watchers

4 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages