Android 5.0 Favorite Features, Release November 3rd? – XDA TV

Google Confirms Android 5.0 Lollipop for November 3rd! That and much more … more

Prepare Your Build Machines: Ubuntu 14.10 Utopic Unicorn Now Official

Today is an important day for any and all Linux enthusiasts. One of the … more

Track the Time You Waste on Social Media with Socials Addict

When you use your phone, you often don’t even realize how much time you … more

Document the Story of Your Social Life with 8tory

The different forms of social media are growing every day. It’s hard to imagine a day … more
Post Reply

[APP] Process Hacker 2.30 [[beta]] for Windows RT

OP bfosterjr

7th March 2013, 05:06 AM   |  #1  
OP Senior Member
Thanks Meter: 156
 
156 posts
Join Date:Joined: Jan 2013
Donate to Me
All,

Please find the attached Windows RT native binaries for Process Hacker (v 2.30). See the project homepage for more details:

http://processhacker.sourceforge.net/

I'm currently labeling this as a [[beta]] release because I've disabled some functionality to get this building clean for Windows RT. The kernel component is not yet ported. I'm going to continue working on this tool in my spare time to add any missing functionality. Its not quite ProcessExplorer.. but its pretty darn close

I haven't had a whole lot of time to test everything.. so if anyone finds any other functionality that is missing or appears broken please report it here so I can investigate fixing it.

Cheers!

EDIT: I forgot to include the plugins in the original zip package.. all fixed now. Sorry.

EDIT2: It looks like someone else actually worked on this a few weeks ago but failed to share it with anyone -> http://processhacker.sourceforge.net....php?f=5&t=926

EDIT3: Stack walking and proper CPU identification should now work. I've also renamed the zip files to avoid confusion. This is the 3rd release.

EDIT4: Posted a test signed kernel driver. It has been built without the WDK/DDK and in debug mode. I've also included the pdb file for those who might need/want it. Drop this in the root folder and restart processhacker. Its been very stable for me, but please use at your own risk. *updated - 31-03-2013*
Attached Thumbnails
Click image for larger version

Name:	Screenshot (3).jpg
Views:	2249
Size:	44.3 KB
ID:	1787839  
Attached Files
File Type: 7z ProcessHacker_2.30_arm_beta_rel3.7z - [Click for QR Code] (600.6 KB, 861 views)
File Type: zip kprocesshacker_rel2.zip - [Click for QR Code] (104.7 KB, 320 views)
Last edited by bfosterjr; 31st March 2013 at 12:17 AM. Reason: updated kernel driver
The Following 6 Users Say Thank You to bfosterjr For This Useful Post: [ View ]
7th March 2013, 07:28 AM   |  #2  
Member
Thanks Meter: 28
 
43 posts
Join Date:Joined: Jan 2013
Thx
That is great. Aspecialy because my Task manager is not running anymore.
But it is running at 50% CPU usage. quit a lot i think.
7th March 2013, 11:33 PM   |  #3  
OP Senior Member
Thanks Meter: 156
 
156 posts
Join Date:Joined: Jan 2013
Donate to Me
Update
Original post has been updated with new binaries. Stack walking and CPU identification issues now fixed.
9th March 2013, 08:52 AM   |  #4  
Member
Flag Seoul, Korea
Thanks Meter: 13
 
33 posts
Join Date:Joined: Jul 2010
More
Is it possible that porting kernel driver for ARM platform?
I only know that there is no DDK for ARM platform.
I've been looking for it, but still cannot find it yet.
9th March 2013, 09:44 AM   |  #5  
OP Senior Member
Thanks Meter: 156
 
156 posts
Join Date:Joined: Jan 2013
Donate to Me
Quote:
Originally Posted by kkw620

Is it possible that porting kernel driver for ARM platform?
I only know that there is no DDK for ARM platform.
I've been looking for it, but still cannot find it yet.

I haven't tried it yet.. but I'm not expecting it to be too difficult. There really isn't a "DDK" anymore.. and the driver kit has been merged into the Windows SDK. All that I can see missing from the SDK is the kernel libraries. For simple software drivers you don't need that many libs.

Anyway.. I'll post an update here once (and if) I get it building. The biggest problem will be testing it.. because I won't be able to do any kernel debugging

Cheers!
9th March 2013, 01:02 PM   |  #6  
Recognized Developer
Thanks Meter: 214
 
1,150 posts
Join Date:Joined: Apr 2004
Donate to Me
Quote:
Originally Posted by kkw620

Is it possible that porting kernel driver for ARM platform?
I only know that there is no DDK for ARM platform.
I've been looking for it, but still cannot find it yet.

You'll need ARM WDK that is not public (I really believe that soon it would be leaked, similar to IFS and HAL DDKs in old days).
You can compile simple drivers without it by taking the headers from x86 WDK and recreating the import libraries yourself - some persons succeeded in that. But even if you have ARM WDK - not all drivers can be ported by a simple recompilation. For example I've tried to recompile an OpenVPN driver - and failed, as it is based on NDIS 5.0 when minimal supported NDIS version in RT is 6.3. Someone familiar with NDIS is needed to update its sources first.
9th March 2013, 01:10 PM   |  #7  
Recognized Developer
Thanks Meter: 214
 
1,150 posts
Join Date:Joined: Apr 2004
Donate to Me
Compiled the driver for RT. Driver is unsigned - sign it yourself. And driver is not tested by me. The only thing I've modified except for project settings - commented the "_asm"s.
Binaries attached.

Edited: attached modified sources too.
Attached Files
File Type: zip Win8Release.zip - [Click for QR Code] (120.8 KB, 85 views)
File Type: 7z KProcessHacker-src.7z - [Click for QR Code] (150.3 KB, 57 views)
Last edited by mamaich; 9th March 2013 at 01:13 PM.
The Following 2 Users Say Thank You to mamaich For This Useful Post: [ View ]
9th March 2013, 10:19 PM   |  #8  
OP Senior Member
Thanks Meter: 156
 
156 posts
Join Date:Joined: Jan 2013
Donate to Me
Quote:
Originally Posted by mamaich

Compiled the driver for RT. Driver is unsigned - sign it yourself. And driver is not tested by me. The only thing I've modified except for project settings - commented the "_asm"s.
Binaries attached.

Edited: attached modified sources too.

See .. I figured it would be easy . As I said, you really don't _need_ the DDK/WDK, but it would certainly make most drivers much easier to work with. As much as I appreciate the binaries the biggest problem is testing without having a kernel debugger. Testing and debugging via crash dumps is not what I would call fun

Cheers!
10th March 2013, 04:18 AM   |  #9  
Member
Flag Seoul, Korea
Thanks Meter: 13
 
33 posts
Join Date:Joined: Jul 2010
More
Smile Thanks! Seems that it is working fine
Quote:
Originally Posted by mamaich

Compiled the driver for RT. Driver is unsigned - sign it yourself. And driver is not tested by me. The only thing I've modified except for project settings - commented the "_asm"s.
Binaries attached.

Edited: attached modified sources too.


I did jailbreak 1.20 on my Surface RT. I saw that it contains kernel code execution hack, (means that Test Mode for test signing driver)
And I signed the driver with test signature, put the driver file in same folder with Process Hacker main binary.
After that, I opened up Process Hacker with Administrator right.

You know, without the kernel driver, when I wanna see the stack trace of threads which are on "System" process, it isn't possible.
But now it works!

It seems that it is working fine. I try to test more.
12th March 2013, 11:59 AM   |  #10  
OP Senior Member
Thanks Meter: 156
 
156 posts
Join Date:Joined: Jan 2013
Donate to Me
kernel driver
Post updated to include my own built version of the kernel driver.

Post Reply Subscribe to Thread
Previous Thread Next Thread
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes


Top Threads in Windows RT Development and Hacking by ThreadRank