Comment by worthless-trash
20 days ago
I dont think you can even load the "windows" kernel module in wine. Last time i tried with the capcom rootkit, it didnt work at all.
20 days ago
I dont think you can even load the "windows" kernel module in wine. Last time i tried with the capcom rootkit, it didnt work at all.
Wine doesn't emulate the NT kernel; Just the NT and Win32 userspace APIs. For example, Wine provides a `kernel32.dll` that maps API calls into the appropriate Linux ones. Anything kernel level is operating "below" Wine.
I read the person I was responding to saying they avoided games with root kits for moral, not technical, reasons. So I assumed they were on Windows, and AFAIK, windows just offers binary "changes" permissions which covers anything from installing in the slightly protected Program Files directory to installing a rootkit. In other words, can they even detect they are about to install a root kit?
Good question and one I am now looking into