main menu
vault
you must be level 2 to upload files to your vaultdownloads
you must be logged on, and level 1, to access downloadsRootkit Collection
| File | Contributer | Link |
| Hacker Def... | hf | n/a |
| HE4Hook | admin | n/a |
| BASIC CLAS... | hoglund | n/a |
| Vanquish | xshadow | n/a |
| NT Rootkit | hoglund | n/a |
| FU | fuzen_op | n/a |
| WinlogonHi... | JeFFOsZ | n/a |
| klister | joanna | n/a |
| Patchfinde... | joanna | n/a |
| MyNetwork | hoglund | n/a |
| MTDWin | hoglund | n/a |
| NTFSHider | hoglund | n/a |
| VideoCardK... | hoglund | n/a |
| VICE | fuzen_op | n/a |
| Klog | Clandestin... | n/a |
| NtIllusion | Kdm | n/a |
| AFX Rootki... | TheRealAph... | n/a |
| SInAR | vulndev | n/a |
| Shadow Wal... | Clandestin... | n/a |
| BootRootki... | dereksoede... | n/a |
| CHAZ - Nim... | neocrackr | n/a |
| Clandestin... | merlvingia... | n/a |
| FUTo | petersilbe... | n/a |
| Windows Me... | alcapone66... | n/a |
| RAIDE | petersilbe... | n/a |
| BOOT KIT | vipinkumar | n/a |
| BluePill | Joanna and... | n/a |
| DEFRAG | blume1975 | n/a |
| Keyboard H... | chpie | n/a |
| CheatEngin... | DarkByte | n/a |
Proper way to hide files/directories aka the FsFilter way aka bypass Flister : message board
| view options: unpacked threads | | old style view | |
 Posted by bluesky
(Untrusted stranger) [ip info hidden] - Feb 15 2005, 05:50 (UTC+0)
| ||
| No guarantee for FileInfo value | ||
| It seems that the value for FileInformationClass is not guaranteed to be correct when the IRP is returning from the lower drivers. Thus would it be better if we retrieve the value of FileInfo before calling the driver? | ||
this thread posts:
- No guarantee for FileInfo value
(by bluesky (Untrusted stranger) Feb 15 2005, 05:50 (UTC+0) )It seems that the value for FileInformationClass is not guaranteed to be correct when the IRP is returning from the lower drivers. Thus would it be better if we retrieve the value of FileInfo before calling the driver?
- Re: No guarantee for FileInfo value
(by valerino (Normal user) Feb 15 2005, 09:01 (UTC+0) )Who said that ?
The irp is not yet completed (you must complete it yourself), so the buffer is ofcourse still valid.
valerio
- Re: No guarantee for FileInfo value