windows2

Please, how do I test the new kernel32 .dll?

Hi, do I save my kernel32.dll patch with this method?

Thank you very much, I will try it tomorrow.

@win32 I had a small problem which is that the two addresses do not match the addresses that should be called, how do I fix this please.

I have finally added it successfully, Thanks a lot

I don't understand why there is a code with an new section (empty space). So if I deleted the added code alone (strange thing with a new empty space) Does an error occur?

Hi @win32 , I try to make an extended kernel for Windows NT 4.0 I have add this function : GetProcessIoCounters But i found an error : I don’t found the function in IDA list of functions ! But in export table tester and export directory in CFFExplorer the function exist ! I found the code in IDA in the HEX view and IDA view in .xdata segment : I don’t know how to resolve this problem Give me a way to solve this problem please. I documented everything I did, using several pictures to illustrate every step I took in this link: https://mega.nz/file/4k0iCYiJ#3CaHXrnEUnsdRqMB3IMiMeuJpxbFp24bm1Rp7Kf75RA

Well thank you I will do everything you told me . Please if you have time in the future. Explain the method of adding a simple function, and processing imports, and send it in a link from Drive. Maybe I will need it if I can't implement your words correctly. I don't force you to make a video, I say if you can, otherwise, thank you. I benefited a lot with your informations .

OK thank you I mean for the imports do they need modifications? If yes, how do I do that? What are the tasks that must be done? What are the necessary tools?

I understand, thank you very much I will try this method to fix up the imports, function calls and data references . Do I use rebuild in cff explorer? This is the only thing I don't understand yet. Forgive me for bothering you with my questions which seem trivial to you . But it is very important to me and I thank you for teaching me what I didn't know.

This means I have to rewrite kernel32 .dll using IDA to browse to a newer code, for example XP kernel32.dll code, and then rewrite it with C. Example open kernel32 .dll for Windows XP and rewrite it to C, but this is very difficult. Will functions in this way preserve their addresses, which other .dll files use for the request? . Do you mean like this, or do you mean to transfer a specific function code from IDA and then arrange it in C. Then turn it into an ASM code. Then to hexa and then add it to the new section in the export table. Do you mean like this? Please simplify the talk for me. Because I hardly understand English, sorry

Hello Win32 ,I started yesterday to test the kernel extension based on your topic. Thank you for all these explanations. I want to ask you, where do you get these Hexa functions? I want to add some functions to kernel32 .dll for windows 2000. as an experience. Can I move the functions in the kernel32.dll export table for Windows XP or Vista 32bit? To the export table in the new kernel32.dll section for Windows 2000.?

Hi mina ,there is a new BWC update v3.0hM with a new fix for today.

He means that there may have been a misunderstanding between the size of the added code and the address, which caused an error in the work of this function, and this error caused the blocking of the request for the function when it was called from ntdll. First of all, I advise you to renew your information. This helped me a lot in getting started: Yesterday I started learning and experimenting.

Extended kernel v3.0i BWC released, changes are as follows: -Fixed a bug that some components did not work when MSVCRT was changed to NT5 series. -Fixed the implementation omission of MFC90ESN.DLL. -Improvement of CoRevolkInitializeSpy / CoRegisterInitializeSpy function of OLE32.DLL -Replace MsgBox2K.exe with a modified version Link for Extended kernel v3.0i : http://blog.livedoor.jp/blackwingcat/archives/1299806.html

Thank you very much

Your words are wonderful, right and realistic. I promise you that there will be a new extended nucleus in the middle of next year, in which there will be great progress at the level of running modern programs. There is a person who is giving everything he has to issue this extension. I pray to God to grant him success in his work.

@husara1 @MicahMoo11 There will be better updates in the future than BWC updates. It will be able to run newer software. With the removal of the shortcomings, and perhaps Windows 2000 will be a high match in the coming years, stay tuned. Wish this person success in his work. Don't tell people that Windows 2000 is over, There is someone who tires of developing new, cutting-edge updates.

The reason behind the download link not working is not the translation. BWC has transferred all its files to another server, which has everything you need to download : http://win2k.org/wlu/wluen.htm

blackwingcat is the only one who can solve this problem. Go to his article and ask him. http://blog.livedoor.jp/blackwingcat/archives/1995283.html

"The function is not located at (insert a system file)". Install the latest BWC update that may solve your problem. http://win2k.org/wlu/wluen.htm BWC said in one of its articles on Twitter, that there are no security holes in Windows 2000 . Use fcwin2k to run programs that refuse to start on Windows 2000 ,find it in C:\WINNT

https://www.apriorit.com/dev-blog/366-software-reverse-engineering-tools

I see that some are hard on me with their selfishness and I'm really upset, so why wouldn't you want to spread the information to someone with determination and love to learn!! ?

To everyone who understands how to create Extended Kernel Hello, is this information here https://bidouillesecurity.com/tutorial-writing-a-pe-packer-part-1/ https://bidouillesecurity.com/tutorial-writing-a-pe-packer-part-2/ https://bidouillesecurity.com/tutorial-writing-a-pe-packer-part-3/ https://bidouillesecurity.com/tutorial-writing-a-pe-packer-part-4/ https://bidouillesecurity.com/tutorial-writing-a-pe-packer-part-5/ enough to learn Windows Kernel Extension? Should I learn assembly language? Is it necessary to dive into computer language and add functions using binary language like the old programmers?

Windows 2000 is the latest classic Windows and bears that beautiful logo. To this day, he is struggling to survive, thanks to developers such as BWC, WildBill , and others who are trying to develop it with all their efforts today as Mr. Ximonite . But today, I see a significant regression in the will to develop this system, which needs many additions at the level of hardware and software. Today, this system needs a protocol to deal with the mobile phone and transfer information between the two parties ، UMDF is the only way to do this job. I see many specialists on this site who can develop this system. Windows 2000 has no similarity today. Windows Vista can be replaced by Windows 7 because it is similar to it with simple changes. But the classic system like Windows 2000 cannot be replaced by a similar, more advanced version of it, because it is the last system in that form that takes you to the beautiful past. Therefore, I invite everyone who can do the extension of the kernels, to solve some of the basic Windows 2000 problems that it lacks today. Thank you.