I need some help with some code conversion from C.
It is from reghide.c from web.archive.code which hides a registry key.

This module is run right before the key is made and initialized.



//
// Loads and finds the entry points we need in NTDLL.DLL
//
VOID LocateNTDLLEntryPoints()
{
if( !(NtCreateKey = (void *) GetProcAddress( GetModuleHandle("ntdll.dll"),
"NtCreateKey" )) )
Posted on 2010-09-22 14:42:31 by skywalker
Don't do this - it offers no real protection, pisses off legitimate users that can't clean up after your application, and might (should!) trigger anti-malware software.
Posted on 2010-09-22 15:51:38 by f0dder
hmmmm.... I predict a DLL injection project in your future.  Have fun with that  :D
Posted on 2010-09-22 16:48:04 by p1ranha

Don't do this - it offers no real protection, pisses off legitimate users that can't clean up after your application, and might (should!) trigger anti-malware software.


You are thinking negatively.

I would never do the above for a software program.

Posted on 2010-09-22 17:03:15 by skywalker