Could not connect to rootkit.

Question

Could not connect to rootkit.

WilleLX1 opened this issue 10 months ago · comments

wdani commented 10 months ago

Subject: Unable to Connect to Rootkit - "INVALID_HANDLE_VALUE" Error

Description:

I've encountered an issue while trying to use the Chaos Rootkit. I followed the steps below:

Downloaded all the necessary rootkit files from the release page, including "Chaos-Rootkit.sys," "imgui.ini," and "ring3-gui.exe."
Launched "ring3-gui.exe."
Clicked on the "Connect to rootkit" button.

However, each time I attempt to connect to the rootkit, I encounter the following error message in the "ring3-gui.exe" console:

INVALID_HANDLE_VALUE

I would appreciate any help or guidance on resolving this issue. Thank you in advance for your assistance!

Best regards,
WilleLX1

V2 · Answer 1 · Sat Sep 16 2023 20:32:58 GMT+0800 (China Standard Time)

Hello @WilleLX1 , the rootkit currently works only when DSE is disabled, which will be added in the future. You can disable DSE by opening Command Prompt as an administrator and running the following command:

bcdedit /set testsigning on

then restart, and it should work. Note that the GUI version is currently marked as unstable, which will be fixed in the next updates. Happy hacking!

wdani · Answer 2 · Sun Sep 17 2023 01:34:58 GMT+0800 (China Standard Time)

Thanks for the great response!

V2 · Answer 3 · Sun Sep 17 2023 02:03:26 GMT+0800 (China Standard Time)

anytime ,happy to help !!