I am developing a security application , but i am unable to find any practicle example related to types of drivers. (This is first time i am using Driver development)
For e.g. Antivirus’s Drivers which scan and delete , Vedio capture utility drivers, network drivers,Folder lock drivers… What kinds of these drivers are? and what should i read to create something like that?
I know about theory of Kernal level and userlevel but furthure difinations goes into VDD, PluginPlay driver,Filter driver etc … Here i became confuse what to choose for things like above …Please clearify me which way should i use for them.
Regards
You would very likely need a File System Minifilter driver. There is a functional (but very simple) AV scanner filter driver example in the WDK. I am not very sure what do you mean with “folder lock”, but if you would like to achieve access denying / filtering, then again, you can do that with a minifilter.
have a nice day,
Sandor LUKACS
thank you very much for your reply,Could you guide me is this possible in WDF to create similer type of filters? Any source for these kinds of programming ???
It is not possible in WDF. WDF does not handle file system drivers. Get
the latest WDK and look at the various mini-filter examples. The examples
will provide a decent guide as long as you do not intend to modify data in
the file by the filter. Beyond the WDK, I know of little in the way of
file system filter examples, and none worth looking at (if someone knows a
good onle please speak up). Also, seriously consider taking OSR’s file
system class to understand the problems and chellenges in this area.
–
Don Burn (MVP, Windows DDK)
Windows 2k/XP/2k3 Filesystem and Driver Consulting
Website: http://www.windrvr.com
Blog: http://msmvps.com/blogs/WinDrvr
Remove StopSpam to reply
wrote in message news:xxxxx@ntfsd…
> thank you very much for your reply,Could you guide me is this possible in
> WDF to create similer type of filters? Any source for these kinds of
> programming ???
>
But i am very confuse from where to start , I have seen and read few articles related WDF,WDM etc,. Since you said WDF is not supported for Filter driver and on msdn its written WDM is also not a choice for filter driver. http://msdn2.microsoft.com/en-us/library/ms790737.aspx
Please clearify me which Driver library for which driver model is suitable. I used to create security application in usermode using VC++(hooking etc) etc.But i was always limited to control the system like i couldnt take dekstop snapshot having running Video picture as well, Getting HTTP get and response data without any third party API, Locking and hiding the files out from its file system etc. These kinds of work i need to do using system drivers.
I have downloaded WDK and it has DDK 3790.1830, but after read few chapters i found WDF is more easy and next recommended from microsoft for its driver development. Thats why i was thinking to download WDF for making drivers.
Please guide me from all above confusion i have.
Regards