Learn how to set up a development testing environment for writing Windows kernel-mode drivers using Hyper-V, WinDbg, and Visual Studio.  Cover the basic anatomy of a driver from loading and unloading, I/O control codes, interaction from userland, and kernel debugging.  Implement various abuse primitives including removing process protection, disabling kernel callback routines and driver signature enforcement.

Course Curriculum

    1. What is a Driver?

      FREE PREVIEW

    2. Configure your Development Environment

      FREE PREVIEW

    3. Driver Entry

      FREE PREVIEW

    4. Printing Debug Messages

      FREE PREVIEW

    5. Loading and Running the Driver

      FREE PREVIEW

    6. Driver Unload

      FREE PREVIEW

    7. Dispatch Routines

      FREE PREVIEW

    8. Client-Side Code

      FREE PREVIEW

    9. Dispatch Device Control

      FREE PREVIEW

    10. Sending Data to the Driver

      FREE PREVIEW

    11. Returning Data from the Driver

      FREE PREVIEW

    12. Kernel Debugging

      FREE PREVIEW

    1. Introduction

    2. Unprotecting Processes

    3. Protecting Processes

    4. Windows Version Check

    1. Introduction

    2. Token Privileges Structure

    3. Enabling Token Privileges

    1. Introduction

    2. PspCreateProcessNotifyRoutine Array

    3. Getting Module Information

    4. Returning Data to the Client

    5. Removing a Callback Routine

    6. Thread & Image Load Notifications

    1. Credits and Acknowledgements

      FREE PREVIEW

    1. Course Export

About this course

  • £52.29
  • 27 lessons
  • 0 hours of video content

FAQ

  • What hardware or software is required?

    A physical Windows host and another virtual Windows host running inside Hyper-V.

  • How much C++ do I need to know?

    Foundational knowledge would be useful, but not absolutely essential.

Student Reviews

5 star rating

Offensive Driver Development: Fantastic

Jake Mayhew

I loved it. Thanks to RastaMouse for making it available. I now have a much better understanding of drivers (which I was always interested in but didn't know...

Read More

I loved it. Thanks to RastaMouse for making it available. I now have a much better understanding of drivers (which I was always interested in but didn't know where to start) and now have a tool I can play around with. Money well spent!

Read Less
5 star rating

Awesome

Daniel Ernst

Well structured and easy to follow. Best introduction to the topic I've found so far.

Well structured and easy to follow. Best introduction to the topic I've found so far.

Read Less
4 star rating

good

Israel Enriquez

I think is great you develop this type of content

I think is great you develop this type of content

Read Less
5 star rating

Awesome Content

Daniel Feichter

Awesome and very detailed driver dev. content

Awesome and very detailed driver dev. content

Read Less