/usermode-kernel-communication

Simple communication between usermode and kernel

Primary LanguageC++

Usermode Kernel Communication

Simple communication between usermode and kernel.

How to run

  1. Install and setup a virtual machine, for example: VMware
  2. Enable Virtualize Intel VT-x/EPT or AMD-V/RVI

Virtual Machine Settings

  1. If your driver is not signed, you should enable test mode: bcdedit /set testsigning on
  2. Use OSR Loader to load the kernel driver
  3. Open the usermode application and that's it

How to debug

You can use DbgView or WinDbg. The advantage of WinDbg is that you know where it crashes.

If you decide to use WinDbg, follow the following steps: https://docs.microsoft.com/en-us/windows-hardware/drivers/debugger/setting-up-a-network-debugging-connection

result

DbgView

In case you want to use DbgView:

  1. Create the following registry key: Computer\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Debug Print Filter
  2. Add a new DWORD value DEFAULT and set its Data field to 0xF
  3. Open DbgView and enable Capture Kernel and Pass-Through under Capture
  4. Restart DbgView
  5. Done

DbgView settings