flat assembler
Message board for the users of flat assembler.

Index > OS Construction > NTFS Resident Bootprogram worked in WinXP/2K/Vista too, way?

Author
Thread Post new topic Reply to topic
Hp



Joined: 03 Jul 2004
Posts: 16
Hp
Hello,

is there a way to created a memory resident Bootloader that worked
on new NTFS and can be make operations in Windows?
Post 14 Jul 2007, 16:09
View user's profile Send private message Reply with quote
Adam Kachwalla



Joined: 01 Apr 2006
Posts: 150
Adam Kachwalla
Explain the situation...
Post 21 Jul 2007, 02:17
View user's profile Send private message Reply with quote
Hp



Joined: 03 Jul 2004
Posts: 16
Hp
Hello,

i mean.

Hard-Disc formated NTFS, WinXP
Writing Bootloader on MBR that that start WinXP Kernel on NTFS File-System.
Than Loader wait and start when Windows startup, make
a messagebox with the WinAPI?

Is there a way that a Bootloader can use WinAPI?
Post 21 Jul 2007, 06:53
View user's profile Send private message Reply with quote
Gizmo



Joined: 19 Jul 2007
Posts: 25
Gizmo
You can't use win32 api's since they are actually inside of dll's loaded when windows loads. That and you would also need the entire gdi subsystem loaded to draw pixels to the vesa adapter since the win32 api's are based on gdi.

A bootloader gives up execution to the winxp bootloader on the partitions mbr so once you pass on to windows you loose the ability to run anything.

If you wanted to insert code into some windows component that would execute after windows has loaded you might be able to do that, but it would not be easy since you can't just throw it in there anywhere and expect it not to crash.
Post 21 Jul 2007, 13:17
View user's profile Send private message Reply with quote
Adam Kachwalla



Joined: 01 Apr 2006
Posts: 150
Adam Kachwalla
Quote:

If you wanted to insert code into some windows component that would execute after windows has loaded you might be able to do that, but it would not be easy since you can't just throw it in there anywhere and expect it not to crash.

Another problem with that is that Windows Vista uses ASLR, which means that patching up a Windows Component at runtime is not going to work under Vista or Longhorn Server (without crashing the system 99.99999% of the time).
Post 28 Jul 2007, 03:04
View user's profile Send private message Reply with quote
Gizmo



Joined: 19 Jul 2007
Posts: 25
Gizmo
It would be easier to just add a windows application to the startup folder, as a service, or in the registry that loads when the desktop does (a service loads when the drivers do).
Thats how most spyware programs "embed" themselves- in windows you can even force a dll to load into every process by modifing the right registry key or do it one process at a time and actually inject a dll at runtime. (called a hook)
Thats how antivirus programs insert those annoying wigets into the explorer system tray (not the icons, i mean they make there own tray next to the system tray).
Post 28 Jul 2007, 07:20
View user's profile Send private message Reply with quote
Display posts from previous:
Post new topic Reply to topic

Jump to:  


< Last Thread | Next Thread >
Forum Rules:
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
You cannot attach files in this forum
You can download files in this forum


Copyright © 1999-2020, Tomasz Grysztar. Also on YouTube, Twitter.

Website powered by rwasa.