It is currently Sun Feb 17, 2019 12:42 am

All times are UTC + 1 hour




Post new topic Reply to topic  [ 27 posts ]  Go to page Previous  1, 2
Author Message
 Post subject:
PostPosted: Sun May 03, 2009 2:17 pm 
Offline
Always Here
Always Here

Joined: Mon Sep 22, 2003 6:45 pm
Posts: 7439
Location: Norway
And what do you expect them to do if they actually need to terminate it (because it's hanging or something)?


Top
 Profile  
Reply with quote  
 Post subject:
PostPosted: Sun May 03, 2009 3:57 pm 
Offline
Enthusiast
Enthusiast
User avatar

Joined: Sat Jan 12, 2008 3:25 pm
Posts: 339
Location: Greece
Trond wrote:
And what do you expect them to do if they actually need to terminate it (because it's hanging or something)?

It will exists a "shutdown" procedure from inside the main application.
Regards.

Thanos

_________________
» myPersonal Banker :: Because you do not need to have a master degree in economics in order to organize your finances!


Top
 Profile  
Reply with quote  
 Post subject:
PostPosted: Sun May 03, 2009 4:29 pm 
Offline
New User
New User

Joined: Fri Mar 27, 2009 8:48 am
Posts: 8
Try to convert it to pb 8)

Code:
#define _WIN32_WINNT 0x0500

#include <windows.h>
#include <sddl.h>
#include <accctrl.h>
#include <stdio.h>
#include <conio.h>
#include <aclapi.h>

BOOL ProtectProcess(HANDLE hProcess);

void main(void)
{
   HANDLE hProc = OpenProcess(PROCESS_ALL_ACCESS, FALSE, GetCurrentProcessId());

   ProtectProcess(hProc);

   printf("SetProcessDacl - Keep a process from being closed by other applications.\nDeveloped by ANUBIS");

   while(TRUE)
   {
      Sleep(100);
   }

}

BOOL ProtectProcess(HANDLE hProcess)
{
   SECURITY_ATTRIBUTES sa;

   sa.nLength = sizeof(SECURITY_ATTRIBUTES);
   sa.bInheritHandle = FALSE;

   if (!ConvertStringSecurityDescriptorToSecurityDescriptor("D:P", SDDL_REVISION_1, &(sa.lpSecurityDescriptor), NULL))
      return FALSE;

   if (!SetKernelObjectSecurity(hProcess, DACL_SECURITY_INFORMATION, sa.lpSecurityDescriptor))
      return FALSE;

   return TRUE;

}


Top
 Profile  
Reply with quote  
 Post subject:
PostPosted: Sun May 03, 2009 5:16 pm 
Offline
Enthusiast
Enthusiast
User avatar

Joined: Sat Jan 12, 2008 3:25 pm
Posts: 339
Location: Greece
ThorstenD wrote:
Try to convert it to pb 8)


Thank you, but unfortunately my C knowledge is limited :(
Regards

Thanos

_________________
» myPersonal Banker :: Because you do not need to have a master degree in economics in order to organize your finances!


Top
 Profile  
Reply with quote  
 Post subject:
PostPosted: Sun May 03, 2009 5:26 pm 
Offline
Always Here
Always Here

Joined: Mon Sep 22, 2003 6:45 pm
Posts: 7439
Location: Norway
thanos wrote:
Trond wrote:
And what do you expect them to do if they actually need to terminate it (because it's hanging or something)?

It will exists a "shutdown" procedure from inside the main application.
Regards.

Thanos
Yes, but if something goes wrong and the program "stops responding"?


Top
 Profile  
Reply with quote  
 Post subject:
PostPosted: Sun May 03, 2009 6:46 pm 
Offline
Enthusiast
Enthusiast
User avatar

Joined: Sat Jan 12, 2008 3:25 pm
Posts: 339
Location: Greece
Trond wrote:
thanos wrote:
Trond wrote:
And what do you expect them to do if they actually need to terminate it (because it's hanging or something)?

It will exists a "shutdown" procedure from inside the main application.
Regards.

Thanos
Yes, but if something goes wrong and the program "stops responding"?

A very good question!
But, i will take this risk.
Regards.

Thanos

_________________
» myPersonal Banker :: Because you do not need to have a master degree in economics in order to organize your finances!


Top
 Profile  
Reply with quote  
 Post subject:
PostPosted: Sun May 03, 2009 6:53 pm 
Offline
Addict
Addict
User avatar

Joined: Sun Mar 19, 2006 1:57 pm
Posts: 4828
Location: Germany
> i will take this risk.

make sure to properly inform your customers, to enable them to decide if they want to take this risk...

_________________
oh... and have a nice day.


Top
 Profile  
Reply with quote  
 Post subject:
PostPosted: Sun May 03, 2009 9:59 pm 
Offline
Enthusiast
Enthusiast
User avatar

Joined: Sat Jan 12, 2008 3:25 pm
Posts: 339
Location: Greece
Kaeru Gaman wrote:
> i will take this risk.

make sure to properly inform your customers, to enable them to decide if they want to take this risk...

Indeed!
If someone knows the way to run a protected process please post.
Regards

Thanos

_________________
» myPersonal Banker :: Because you do not need to have a master degree in economics in order to organize your finances!


Top
 Profile  
Reply with quote  
 Post subject:
PostPosted: Mon May 04, 2009 10:40 am 
Offline
Moderator
Moderator
User avatar

Joined: Sat Apr 26, 2003 1:11 am
Posts: 1388
i did something so far (convert the c code below)
but it did not work here (XP) .
Don't know what goes wrong here,
perhaps someone can help..

Code:
Lib=OpenLibrary(#PB_Any,"advapi32.dll")
If Lib
 Prototype.l ProtoConvertStringSecurityDescriptorToSecurityDescriptor(StringSecurityDescriptor.s,StringSDRevision.l,SecurityDescriptor.l,SecurityDescriptorSize.l)
 
 ConvertStringSecurityDescriptorToSecurityDescriptor.ProtoConvertStringSecurityDescriptorToSecurityDescriptor

  ;If Ansi
 ConvertStringSecurityDescriptorToSecurityDescriptor=GetFunction(lib,"ConvertStringSecurityDescriptorToSecurityDescriptorA")

   ;If UniCode
 ;ConvertStringSecurityDescriptorToSecurityDescriptor=GetFunction(lib,"ConvertStringSecurityDescriptorToSecurityDescriptorW")
   
 
 #SDDL_REVISION_1=1
 #DACL_SECURITY_INFORMATION = 4
 
 If ConvertStringSecurityDescriptorToSecurityDescriptor
  hProc = OpenProcess_(#PROCESS_ALL_ACCESS, #False, GetCurrentProcessId_())
  Debug hproc
  If hproc
   sa.SECURITY_ATTRIBUTES
   sa\nLength = SizeOf(SECURITY_ATTRIBUTES)
   sa\bInheritHandle = #False
   sec.s
   sec="D:P"
   
   Result=ConvertStringSecurityDescriptorToSecurityDescriptor(sec, #SDDL_REVISION_1, @sa\lpSecurityDescriptor, 0)
   ;Debug L1
   Debug Result
   If Result
    Debug @sa\lpSecurityDescriptor
    Debug sa\lpSecurityDescriptor
    Result=SetKernelObjectSecurity_(hProc, #DACL_SECURITY_INFORMATION, sa\lpSecurityDescriptor)
    Debug Result
    If Result
     MessageRequester("info","open Taskmanager And kill me",0)
   
    EndIf
   
   EndIf
   Debug "ending normally..:"
   CloseHandle_(hproc)
  EndIf
 EndIf
 CloseLibrary(Lib)
EndIf
 

_________________
SPAMINATOR NR.1


Top
 Profile  
Reply with quote  
 Post subject:
PostPosted: Tue May 05, 2009 12:29 pm 
Offline
New User
New User

Joined: Fri Mar 27, 2009 8:48 am
Posts: 8
Rings wrote:
i did something so far (convert the c code below)
but it did not work here (XP) .
Don't know what goes wrong here,
perhaps someone can help..

I has the same problem. Compieled with Pelles C it's works on my XP. The full source can be dl from here.


Top
 Profile  
Reply with quote  
 Post subject:
PostPosted: Wed May 06, 2009 7:16 pm 
Offline
Enthusiast
Enthusiast
User avatar

Joined: Sat Jan 12, 2008 3:25 pm
Posts: 339
Location: Greece
ThorstenD wrote:
Rings wrote:
i did something so far (convert the c code below)
but it did not work here (XP) .
Don't know what goes wrong here,
perhaps someone can help..

I has the same problem. Compieled with Pelles C it's works on my XP. The full source can be dl from here.

I faced the same problem with Rings on Xp.
I downloaded and compiled the C code with PellesC but the process was not protected. I killed it with Process Explorer easily on my XP sp3.
Regards.

Thanos

_________________
» myPersonal Banker :: Because you do not need to have a master degree in economics in order to organize your finances!


Top
 Profile  
Reply with quote  
 Post subject: Re: How to create an invisible or protected process?
PostPosted: Sun Nov 20, 2011 4:44 pm 
Offline
New User
New User

Joined: Sun Nov 20, 2011 4:42 pm
Posts: 1
I'm playing around with this code right now and found out it doesnt work on my 64bit system
What may cause this and is it possible to work on bot 32/64 bit systems?


Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 27 posts ]  Go to page Previous  1, 2

All times are UTC + 1 hour


Who is online

Users browsing this forum: No registered users and 13 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum

Search for:
Jump to:  
cron

 


Powered by phpBB © 2008 phpBB Group
subSilver+ theme by Canver Software, sponsor Sanal Modifiye