Exetools - How to skip BSOD?

Exetools (https://forum.exetools.com/index.php)

- General Discussion (https://forum.exetools.com/forumdisplay.php?f=2)

- - How to skip BSOD? (https://forum.exetools.com/showthread.php?t=11748)

Newbie_Cracker

07-29-2008 02:39

How to skip BSOD?

Hello everybody.

Is there anyway to disable BSOD?
There is a protection which BSOD system by its driver when it detects debugger or any delay in its runtime.

Is there anyone who could write a plugin for OllyDbg to disable BSOD?

What's the opcode or command cause BSOD?

Best regards.

D-Jester

07-29-2008 02:50

OS?

What is the fault that is being caused?

Newbie_Cracker

07-29-2008 04:18

1 Attachment(s)

I think I found it.

Driver uses this instruction to BSOD the system

cmp xxxx
je yyyy
int 3

I maked JE to JMP. But sometimes system hangscompletely !
I cann't fix this. Is there any suggestion?

Here is the driver.

I'll protect a file and attached it as soon as possible to challange its unpacking ! ;)
I has many bug that makes protection too hard !!!!

SLV	09-10-2008 01:27

one way to "disable" BSOD is to hook KeBugCheckEx and terminate current thread. but this way is not good as all ways to skip BSOD's, because it's a normal system mechanism for determinating critical situations and if some error is caused with hardware it may have unpredictable results.

All times are GMT +8. The time now is 17:42.