Category : wdk

How do some processes in Windows get the PsProtectedSignerAntimalware flag set for them? Meaning how does windows decide which processes should have this flag set when they are created? More info regarding this flag : https://www.crowdstrike.com/blog/evolution-protected-processes-part-1-pass-hash-mitigations-windows-81/ I doubt that Microsoft has hardcoded the list of AntiViruses somewhere and decides which processes should get this flag ..

Read more

I am working on VirtualSerial at the following link. https://github.com/microsoft/Windows-driver-samples/tree/master/serial/VirtualSerial This sample demonstrates A simple virtual serial driver (ComPort). This driver supports sending and receiving AT commands or Echo strings using the ReadFile and WriteFile calls or via a TAPI interface using an application such as, HyperTerminal. This project working good with HyperTerminal. But not ..

Read more

I make APO by referring to the following site. https://docs.microsoft.com/en-us/windows-hardware/drivers/audio/audio-processing-object-architecture I understand that APO and COM clients can share memory. So, I tried using the method using #pragma data_seg and the method using the CreateFileMapping function. I wrote the code to update the shared variable with the APO real-time process function. The COM client was ..

Read more

I followed the tutorial(Using the Windows Performance Toolkit (WPT) with WDF), but it didn’t work. run WdfEnhancementVerifier.cmd [Service Name] [KMDF/UMDF]. But there was one thing different, I couldn’t find parameters/Wdf in the specific service, so I created the parameter by myself. reboot (In administrator command prompt) wprui.exe & select monitor WDF Driver. Then, start to ..

Read more