Reputation: 4010
how to create a process which will run in kernel level in windows?
I want to create a kernel level of process for windows (Ring 0) but i don't know where to start from. I want to know which SDK is required and any tutorial showing its implementation would be helpful.
Upvotes: 0
Views: 5435
Answers (3)
Reputation: 31
You can create system threads as pointed by Shinnok. Windows does not have facilities for what you are trying to do.
Upvotes: 0
Reputation: 36896
You are asking this in conjunction with how to create a process which is not visible in task manager or services list
Creating a kernel mode solution is going to be so much overhead to do what you want that it is really not the solution. Creating a driver as a substitute for a typical user mode desktop application is not as straight-forward as it sounds.
You should either:
- Use Windows security to restrict users
- Write your app as a service (this is still even not a good solution imo because admins can stop it and it sees 'activity' at a different level than a desktop app)
- Do some basic trick to prevent closing, such as two sentinel processes that watch each other and keep each other alive.
Upvotes: 2
Reputation: 6389
The SDK is the Windows Driver Kit and documentation here. As a correction to your question, at kernel mode you can't use processes, since kernel-mode drivers run as part of the operating system's executive. You can create kernel threads though.
Upvotes: 7
Related Questions
- How to Create a process in c++ to execute exe?
- How to create process in Windows ( C++ ) to run another section of code?
- winApi create process using c++
- Kernel mode programming using simplistic c++?
- How to create a new process in C/C++ and get this new process handle in WinXp?
- How to create a new process in C++ code under Windows?
- CreateProcess handling
- running process command line
- How to turn an app into a kernel-mode running code?
- How to create a process in C++ on Windows?