we are going to learn how to modify the BSOD of your favorite OS, namely Windows 10.
The BSOD or Blue Screen Of Death is this:
So what’s the point of modifying it?
And good for nothing. Just for fun, pleasure or to tell it to you in front of your friends. The interest that I see in it, as far as I am concerned, is that it helps to understand how Windows system calls work and how it is possible to hijack them.
2: kd> ? nt!HalpPCIConfigReadHandlers+0x18 Evaluate expression: -8769656301296 = fffff806`27c05910 2: kd> dt nt!_UNICODE_STRING fffff806`27c05910 ":(" +0x000 Length : 4 +0x002 MaximumLength : 6 +0x008 Buffer : 0xfffff806`27c1faf4 ":(
AndryWindows is a driver developed by the coder ch3rn0byl which modifies the emoticon, the color and the message written on the BSOD.
By default, this is what it will be replaced by:
But by scratching a little in the sources, you can customize everything.