搜索资源列表
-
0下载:
该代码为我学习winnt内核时所写,主要功能是在ring3下通过DeviceIoControl与驱动进行通信,获取内核的数据以及sdt,idt信息等。并实现了hook NtQuerySystemInformation函数来实现进程隐藏的功能-The code for the kernel, I am learning winnt wrote, Its main function is in ring3 through DeviceIoControl communication with the
-
-
0下载:
NT进程查看,使用NTDLL的NtQuerySystemInformation函数,vc6.0编译通过-NT process, NTDLL NtQuerySystemInformation use the function, vc6.0 compile
-
-
0下载:
使用内核函数NtQuerySystemInformation做的进程显示程序,
-
-
0下载:
IN OUT PVOID SystemInformation, IN ULONG SystemInformationLength, OUT PULONG ReturnLength OPTIONAL); NTQUERYSYSTEMINFORMATION NtQuerySystemInformation; 从中可以看到,SystemInformationClass是一个类型信息,它大概提供了50余种信息,也就是我们可以通过这个函数对大约50
-
-
1下载:
这是介绍如何在Windows驱动层 HOOK NtQuerySystemInformation内核 函数的文章。 这篇文章超级详细的介绍了这个函数的每一个参数以及用法。-This is how the Windows kernel function driver layer HOOK NtQuerySystemInformation article. This article describes the super-detailed each parameter of this function
-
-
0下载:
a simple demo program uses NATIVE APIs ( that is , from NTDLL.DLL, espicially NtQuerySystemInformation API) good to learn how to use NATIVE APIs
this demo shows current memory usage, pageing status and freedisk space.
-
-
0下载:
NtQuerySystemInformation主要的的结构体,-The structure of the main body of NtQuerySystemInformation,
-
-
0下载:
List Processes using NtQuerySystemInformation.
wap2k
-
