Pages: [1]

Author Topic: ring 0 trojan  (Read 764 times)

0 Members and 1 Guest are viewing this topic.

Offline schizophrenic

  • /dev/null
  • *
  • Posts: 5
  • Cookies: -1
    • View Profile
ring 0 trojan
« on: July 18, 2013, 10:00:12 am »
I am writing a virus that must jump to ring 0 but how can I do it with the x86 MSR(MODEL SPECIFIC REGISTER)???
Report to moderator   Logged

Offline bluechill

  • Cybermancer
  • Royal Highness
  • ****
  • Posts: 682
  • Cookies: 344
  • I am the existence in these walls
    • View Profile
Re: ring 0 trojan
« Reply #1 on: August 19, 2013, 11:03:32 pm »
This is one of the things while technically possible, is virtual impossible without years of development because it's not just getting root, you have to go exploit code IN the kernel and overwrite pages in the kernel and that is very very very hard to do across multiple OS versions.  The only way you could possibly do it is writing your own bootloader virus which loads itself and then windows and would have Ring 0 that way, those are very hard to write though and with Windows 8 "Secure UEFI" will be practically impossible for most people.
Report to moderator   Logged
I have dreamed a dream, but now that dream has gone from me.  In its place now exists my own reality, a reality which I have created for myself by myself.

Offline Kulverstukas

  • Administrator
  • Zeus
  • *
  • Posts: 6627
  • Cookies: 542
  • Fascist dictator
    • View Profile
    • My blog
Re: ring 0 trojan
« Reply #2 on: August 20, 2013, 07:39:50 am »
One has to be crazy skilled to do it. Xires might be able to though :P
Report to moderator   Logged
Pages: [1]