EvilZone

Programming and Scripting => Projects and Discussion => Topic started by: schizophrenic on July 18, 2013, 10:00:12 AM

Title: ring 0 trojan
Post by: schizophrenic on July 18, 2013, 10:00:12 AM

I am writing a virus that must jump to ring 0 but how can I do it with the x86 MSR(MODEL SPECIFIC REGISTER)???

Title: Re: ring 0 trojan
Post by: bluechill on August 19, 2013, 11:03:32 PM

This is one of the things while technically possible, is virtual impossible without years of development because it's not just getting root, you have to go exploit code IN the kernel and overwrite pages in the kernel and that is very very very hard to do across multiple OS versions.  The only way you could possibly do it is writing your own bootloader virus which loads itself and then windows and would have Ring 0 that way, those are very hard to write though and with Windows 8 "Secure UEFI" will be practically impossible for most people.

Title: Re: ring 0 trojan
Post by: Kulverstukas on August 20, 2013, 07:39:50 AM

One has to be crazy skilled to do it. Xires might be able to though :P