I need some help with some code conversion from C.
It is from reghide.c from web.archive.code which hides a registry key.
This module is run right before the key is made and initialized.
It is from reghide.c from web.archive.code which hides a registry key.
This module is run right before the key is made and initialized.
//
// Loads and finds the entry points we need in NTDLL.DLL
//
VOID LocateNTDLLEntryPoints()
{
if( !(NtCreateKey = (void *) GetProcAddress( GetModuleHandle("ntdll.dll"),
"NtCreateKey" )) )
Don't do this - it offers no real protection, pisses off legitimate users that can't clean up after your application, and might (should!) trigger anti-malware software.
hmmmm.... I predict a DLL injection project in your future. Have fun with that :D
Don't do this - it offers no real protection, pisses off legitimate users that can't clean up after your application, and might (should!) trigger anti-malware software.
You are thinking negatively.
I would never do the above for a software program.