- Install Visual Studio 2019. When you install Visual Studio 2019, select the Desktop development with C++ workload.
- Download WDK10
- Install vcpkg
- Install Windows Template Library and Windows Implementation Libraries by NuGet.
- Install capstone for arch x86
vcpkg install capstone[x86]:x86-windows-static
vcpkg install capstone[x86]:x64-windows-static
vcpkg install poco[netssl]:x86-windows-static
vcpkg install poco[netssl]:x64-windows-static
- First clone the repo then download the submodules
git clone https://github.com/BeneficialCode/WinArk
cd WinArk
git submodule update --recursive --init
- Compile the Zydis kernel library
<1> Open the Zydis.sln in VS2019
<2> Batch Build Zydis Debug/Release Kernel Win32 & x64
<3> Batch Build Zycore Debug/Release Kernel Win32 & x64
Note: If you faced a error ———— 'A WDK corresponding to target '10.0.22000.0' xxxxx ...', Please change the sdk version. After getting the Zydis librabry, you can do the next step.
- Open the Anti-Rootkit.sln in Visual Studio 2019.
- Compile the driver in Release mode first.
- Compile the WinArk.
