Author Topic: ReHIPS and Sysnative  (Read 1715 times)

HJLBX

  • Active Testers
  • Sr. Member
  • *****
  • Posts: 496
ReHIPS and Sysnative
« on: March 23, 2016, 11:05:04 pm »
Have you experienced any problems with ReHIPS and sysnative on 64 bit systems ?

This has been a real problem for some HIPS and HIPS-like programs.  Certain applications and events cannot be properly hooked because of sysnative - service creation for example.

If I recall correctly, ReHIPS does not suffer from this limitation because it does not attempt to monitor them.

Just asking so that I fully understand the upcoming release - and don't create a needless bug report.

ReHIPS uses User-Mode hooking - correct ?

Thanks !
« Last Edit: March 23, 2016, 11:30:04 pm by HJLBX »

Umbra

  • Active Testers
  • Hero Member
  • *****
  • Posts: 596
  • Beta tester
Re: ReHIPS and Sysnative
« Reply #1 on: March 24, 2016, 08:14:18 am »
no, ReHIPS don't use Hooks , it uses Windows own security mechanisms. it is explained in the extensively detailed brochure. That is why i had interests in ReHIPS
« Last Edit: March 24, 2016, 08:16:12 am by umbrapolaris »

schelkunov

  • Jr. Member
  • **
  • Posts: 65
    • ReCrypt
Re: ReHIPS and Sysnative
« Reply #2 on: March 24, 2016, 03:46:07 pm »
Quote
Have you experienced any problems with ReHIPS and sysnative on 64 bit systems ?
We tested ReHIPS on several Windows versions, including x64. And also tested running applications from sysnative folder. No problems were found.

Quote
ReHIPS uses User-Mode hooking - correct ?
ReHIPS doesn't use any hooks to provide security. Instead it uses well-tested, safe and secure Windows built-in access control mechanisms. Some user-mode hooks are indeed used but only for usability purposes and they do not affect security in any way.
« Last Edit: March 24, 2016, 06:26:45 pm by fixer »

HJLBX

  • Active Testers
  • Sr. Member
  • *****
  • Posts: 496
Re: ReHIPS and Sysnative
« Reply #3 on: March 24, 2016, 05:03:02 pm »
Thanks schelkunov.  Thanks Umbra.

HJLBX

  • Active Testers
  • Sr. Member
  • *****
  • Posts: 496
Re: ReHIPS and Sysnative
« Reply #4 on: March 24, 2016, 09:52:43 pm »
Can anyone provide download link to ReHIPS brochure ?

TIA

aDVll

  • Active Testers
  • Hero Member
  • *****
  • Posts: 1120
  • Windows 10 latest 64 bit
Re: ReHIPS and Sysnative
« Reply #5 on: March 25, 2016, 01:12:50 pm »

HJLBX

  • Active Testers
  • Sr. Member
  • *****
  • Posts: 496
Re: ReHIPS and Sysnative
« Reply #6 on: March 25, 2016, 07:49:12 pm »
Yes.

Thanks DVll