|
|
Thanks, Jochen,
I think the possible advantage of a forum is that more people might contribute. Articles get "submerged" in the great ocean of them; I think a forum is more likely to be "visible."
I see the article you linked to was published in 2007, and, while it has many thank-you comments, none of the comments I saw added any new links to content, or commented on whether its existing links were still valid.
cheers, Bill
«Beauty is in the eye of the beholder, and it may be necessary from time to time to give a stupid or misinformed beholder a black eye.» Miss Piggy
|
|
|
|
|
Billji,
If you prefer to not post an article at this time, could you PM me your list of libs? Many thanks!
/ravi
|
|
|
|
|
Namaste, Ravi-ji,
Two excellent open-source libraries I'm currently evaluating are:
1. XDMessaging.NET : ipc without server client; very easy to use. I found out, after discovering XDMessaging, that the author had a CP article published in 2007; that's been updated in 2010, but is out of date now. I've written the author, and requested he update the CP article. last dev activity on github two-months ago. I am experimenting with the "lite" package to enable duplex communication between WinForm apps, but the full package can do remoting using AWS.
home: [^]
github: [^]
2. Message-Pack C-Sharp : fast serializer/deserializer; produces very small compressed packages; very easy to use compared to Proto-buf and other tools. being actively developed now.
github: [^]
cheers, Bill
«Beauty is in the eye of the beholder, and it may be necessary from time to time to give a stupid or misinformed beholder a black eye.» Miss Piggy
|
|
|
|
|
Any idea why this question was removed?
How to prevent a process from being killed in task manager?[^]
It is great that university students are interested in developing anti-malware software for the Windows platform and as far as I can tell my answer is the only mention of ELAM for protecting security products. It would be great to retain that type of information here on codeproject.
|
|
|
|
|
From my Point of view a big lack here, one is not allowed to discuss about this theme.
modified 19-Jan-21 21:04pm.
|
|
|
|
|
Well,
It sounds like an overzealous approach to moderation. Protecting Anti-Malware[^] processes and Digital Rights Management[^] processes are perfectly valid and an important part of software engineering.
Windows IoT also supports ELAM (with protected processes and services) and I am looking forward to what future university students will create to protect our 'Internet of Things' future. Let's give them all the information they need to accomplish this.
Best Wishes,
-David Delaune
|
|
|
|
|
Ok your two links are the official ones. I prefer to discuss every dirty technics of maleware/ransomware/hacking what else.
My Point is: Knowledge is the best defence. And what Tools so called "hackers" can use if everything is on the table?
But I'm pretty alone with this opinion here
Bruno
modified 19-Jan-21 21:04pm.
|
|
|
|
|
0x01AA wrote: one is not allowed to discuss about this theme. A lot of people agree with you and that bothers me a lot. The more we know about how hackers do what they do the more we can right safer code. This is a topic that should be welcomed here.
There are two kinds of people in the world: those who can extrapolate from incomplete data.
There are only 10 types of people in the world, those who understand binary and those who don't.
|
|
|
|
|
So we are on the same line I think? Or it is one more time my English...
modified 19-Jan-21 21:04pm.
|
|
|
|
|
0x01AA wrote: So we are on the same line I think?
No, I don't think so. If I understood you correctly, you do NOT think we should discuss how to write a program that cannot be ended. I think we SHOULD discuss it.
Hope that is clear.
There are two kinds of people in the world: those who can extrapolate from incomplete data.
There are only 10 types of people in the world, those who understand binary and those who don't.
|
|
|
|
|
I think it is my English. See what I wrote to Randor:
Quote: .... I prefer to discuss every dirty technics of maleware/ransomware/hacking what else ...
My Point is: Knowledge is the best defence....
But I'm pretty alone with this opinion here ...
modified 19-Jan-21 21:04pm.
|
|
|
|
|
I see it now. I think I misunderstood you. My apologies.
There are two kinds of people in the world: those who can extrapolate from incomplete data.
There are only 10 types of people in the world, those who understand binary and those who don't.
|
|
|
|
|
No Problem. If I read my first post here again -and translate it back with Google- I'm also have my doubts how I wrote it
modified 19-Jan-21 21:04pm.
|
|
|
|
|
Well, he does keep reposting the same question, and that copy certainly doesn't include much information.
But as far as I can see, that was the first copy, so it's the subsequent duplicates that should have been removed.
And your answer was very good, and should definitely be kept.
(If you've still got the information, maybe you could write it up as a tip?)
"These people looked deep within my soul and assigned me a number based on the order in which I joined."
- Homer
|
|
|
|
|
Hi,
Richard Deeming wrote: (If you've still got the information, maybe you could write it up as a tip?)
That's exactly what I had planned along with some sample drivers, simple service and a protected non-killable user-mode process. Although I think Microsoft may already has a sample ELAM driver.
Btw... there is no way that this information can be weaponized as malware... The whole point of this new system is that all three binaries would need to be dual signed with both an EV (extended validation) certificate and also by the Microsoft Dev Portal after being submitted and going through a vetting process.
Best Wishes,
-David Delaune
modified 6-Jul-17 15:35pm.
|
|
|
|
|
The question isn't a specific question. The author has stated what they want to achieve, but where's the bit they are stuck at? A "I need an app that does X" is too broad. A "How do I hide a process from the Task Manager" is a question, and a "here's a couple of things we've tried" shows they have spent some time at least trying.
As it stands it's an open ended "I have an assignment to do and I need help". Once they narrow it down and work out a more focused question it's all good.
cheers
Chris Maunder
|
|
|
|
|
Well,
I can't even think of a better way to phrase the question...
From 2000-2010 some of the highest quality engineering information you could possibly get was right here on the codeproject... and some of that came from random forum comments.
Btw, he is not asking how to hide a process... he is asking how to protect his security anti-malware process from being killed via the task manager.
Guess next time I should send him over to Stack Overflow.
Google for ELAM Driver[^]
|
|
|
|
|
Randor wrote: I can't even think of a better way to phrase the question...
How about I give it a shot.
It's a bit of a fine line between those who just want someone to hand them the codez and someone genuinely looking for another lead to follow so they can honestly do their own work and learn.
Let's so how it goes.
cheers
Chris Maunder
|
|
|
|
|
Chris,
Could you go back and read the question and show me exactly where the group of university students are asking for source code?
Thanks.
|
|
|
|
|
They don't, and nor did I say they had.
I was talking generally about broad questions.
cheers
Chris Maunder
|
|
|
|
|
Chris,
Thanks.
One final off-topic comment; From my perspective it doesn't really matter if the answer does not help or assist the person(s) asking the question. I am counting on the fact that dozens, hundreds if not thousands of other engineers will encounter similar issues and use the search feature to locate any information I have submitted.
Also... 'Thanks' (Both you and David C) for being such a great online resource for software engineers.
Best Wishes,
-David Delaune
|
|
|
|
|
Thanks to you, too, David, for helping out the dozens, hundreds if not thousands of developers who come here for help. If it wasn't for you and developers like yourself patient enough to share they'd still be wandering around in the desert of confusion.
cheers
Chris Maunder
|
|
|
|
|
I wrote a tips & tricks
- saved many times
- Submitted for approval
- got the DRAFT version
- got the "Pendig" version
Now When I look for the tips & tricks I wrote the only thing I obtain is only an early version
where my work is?
(Sorry, but this is very annoying and it is not the first time it happens!)
|
|
|
|
|
Is this the post? Are you able to access it?
Popup menu[^]
Thanks,
Sean Ewington
CodeProject
|
|
|
|