Skip to content

Vova-K/mwscan

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
driver
driver
 
 
include
include
 
 
tests
tests
 
 
.gitignore
.gitignore
 
 
Magnify.exe
Magnify.exe
 
 
README.md
README.md
 
 
install.inf
install.inf
 
 
mwdriver.sln
mwdriver.sln
 
 

Repository files navigation

malware_scanner

Minifilter Driver which detects malware file signature during file IO

Requirements

  • VisualStudio 2015 (2017 ?)
  • WDK 10(build toolset WindowsKernelModeDriver10.0)

Build steps

Build in visual studio using mwdriver.sln

Build output

  • mwscan.cer
  • mwscan.pdb
  • mwscan.sys

Install steps

place the provided 'install.inf' file into build output, and run the 'install' action

Run/start/stop commands (from administrative Ccommand line)

  • sc query mwscan
  • sc start mwscan
  • sc stop mwscan
  • sc delete mwscan

Local debugging

  • windbg -kl

  • ed nt!Kd_DEFAULT_Mask 0xf

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages