noury/mirror-ac
1
0
Fork 0
mirror of https://github.com/donnaskiez/ac.git synced 2024-11-21 22:24:08 +01:00
Code Issues Projects Releases Packages Wiki Activity
mirror-ac/module/dispatcher/dispatcher.cpp
donnaskiez ea2278e7b3
internal refactoring (#14) 
- Refactor process list. New implementation consists of a hashmap. Each process entry then contains the associated user modules.
- Implement user module integrity checks on timer callback
2024-06-09 17:22:22 +10:00

115 lines
No EOL
3.7 KiB
C++
Raw Permalink Blame History

#include "dispatcher.h"
#include "../client/message_queue.h"
#include "../crypt/crypt.h"
#include "../helper.h"
#include <bcrypt.h>
#include <chrono>
dispatcher::dispatcher::dispatcher(LPCWSTR driver_name,
client::message_queue &message_queue,
module::module_information *module_info)
: thread_pool(DISPATCHER_THREAD_COUNT),
k_interface(driver_name, message_queue, module_info) {
this->module_info = module_info;
}
void dispatcher::dispatcher::request_session_pk() {
#ifdef NO_SERVER
LOG_INFO("NO_SERVER Build used. Generating local session key pair.");
#else
LOG_INFO("Requesting session key pair.");
#endif
}
void dispatcher::dispatcher::write_shared_mapping_operation() {
int operation =
helper::generate_rand_int(kernel_interface::SHARED_STATE_OPERATION_COUNT);
LOG_INFO("Shared mapping operation callback received. operation: %lx",
operation);
this->k_interface.write_shared_mapping_operation(
*reinterpret_cast<kernel_interface::shared_state_operation_id *>(
&operation));
}
void dispatcher::dispatcher::init_timer_callbacks() {
/* we want to offset when our driver routines are called */
this->k_interface.initiate_shared_mapping();
std::optional<HANDLE> result = this->timers.insert_callback(
std::bind(&dispatcher::dispatcher::write_shared_mapping_operation, this),
WRITE_SHARED_MAPPING_DUE_TIME, WRITE_SHARED_MAPPING_PERIOD);
helper::sleep_thread(TIMER_CALLBACK_DELAY);
}
void dispatcher::dispatcher::run_timer_thread() {
thread_pool.queue_job([this]() { this->timers.run_timer_thread(); });
}
void dispatcher::dispatcher::run_io_port_thread() {
thread_pool.queue_job([this]() { k_interface.run_completion_port(); });
}
void dispatcher::dispatcher::run() {
// helper::generate_rand_seed();
crypt::initialise_provider();
std::srand(std::time(nullptr));
this->init_timer_callbacks();
this->run_timer_thread();
this->run_io_port_thread();
thread_pool.queue_job([this]() { k_interface.run_completion_port(); });
while (true) {
LOG_INFO("issueing kernel job!");
this->issue_kernel_job();
helper::sleep_thread(DISPATCH_LOOP_SLEEP_TIME);
}
}
void dispatcher::dispatcher::issue_kernel_job() {
switch (helper::generate_rand_int(KERNEL_DISPATCH_FUNCTION_COUNT)) {
case 0:
thread_pool.queue_job([this]() { k_interface.enumerate_handle_tables(); });
break;
case 1:
thread_pool.queue_job([this]() { k_interface.perform_integrity_check(); });
break;
case 2:
thread_pool.queue_job(
[this]() { k_interface.scan_for_unlinked_processes(); });
break;
case 3:
thread_pool.queue_job(
[this]() { k_interface.verify_process_module_executable_regions(); });
break;
case 4:
thread_pool.queue_job(
[this]() { k_interface.validate_system_driver_objects(); });
break;
case 5:
thread_pool.queue_job([this]() { k_interface.run_nmi_callbacks(); });
break;
case 6:
thread_pool.queue_job(
[this]() { k_interface.scan_for_attached_threads(); });
break;
case 7:
thread_pool.queue_job([this]() { k_interface.initiate_apc_stackwalk(); });
break;
case 8:
thread_pool.queue_job([this]() { k_interface.scan_for_ept_hooks(); });
break;
case 9:
thread_pool.queue_job([this]() { k_interface.perform_dpc_stackwalk(); });
break;
case 10:
thread_pool.queue_job([this]() { k_interface.validate_system_modules(); });
break;
case 11:
thread_pool.queue_job([this]() { k_interface.validate_pci_devices(); });
break;
case 12:
thread_pool.queue_job(
[this]() { k_interface.validate_win32k_dispatch_tables(); });
break;
}
}
Reference in a new issue View git blame Copy permalink