hookfactory.h

来自「The main idea of this work is to create 」· C头文件代码 · 共 47 行

47 行

#if !defined(AFX_HOOKFACTORY_H__7F47A6C3_689C_45D5_B974_108EB9F86911__INCLUDED_)
#define AFX_HOOKFACTORY_H__7F47A6C3_689C_45D5_B974_108EB9F86911__INCLUDED_

#include "common.h"
extern "C"
{
	typedef struct _SYSTEM_SERVICE_TABLE
	{
		PNTPROC ServiceTable;
		PDWORD  CounterTable;
		ULONG   ServiceLimit;
		PBYTE   ArgumentTable;
	}
	SYSTEM_SERVICE_TABLE ,
		* PSYSTEM_SERVICE_TABLE ,
		* * PPSYSTEM_SERVICE_TABLE ;

	typedef struct _SERVICE_DESCRIPTOR_TABLE {
		SYSTEM_SERVICE_TABLE ntoskrnl;  //SST for ntoskrnl.exe
		SYSTEM_SERVICE_TABLE win32k;    //SST for win32k.sys
		SYSTEM_SERVICE_TABLE unused1;
		SYSTEM_SERVICE_TABLE unused2;   
	}
	SERVICE_DESCRIPTOR_TABLE ,
		* PSERVICE_DESCRIPTOR_TABLE,
		* * PPSERVICE_DESCRIPTOR_TABLE ;

	//import SSDT pointer
	extern PSERVICE_DESCRIPTOR_TABLE KeServiceDescriptorTable;
	PSYSTEM_SERVICE_TABLE pNtoskrnl = &(KeServiceDescriptorTable->ntoskrnl);
}// extern "C"



typedef struct _Hook
{
	ULONG mFuncSST_ID;
	PVOID mpNewFuncPtr;
	PVOID mpTrueFuncPtr;
} Hook, *PHook;


PHook CreateHook(IN const PVOID pNewFuncPtr,IN PUNICODE_STRING function_name);
//PHook CreateHook(IN const PVOID pNewFuncPtr,IN const PVOID pTrueFuncPtr);
PHook CreateHook(IN const PVOID pNewFuncPtr,IN const ULONG funcID);

#endif // !defined(AFX_HOOKFACTORY_H__7F47A6C3_689C_45D5_B974_108EB9F86911__INCLUDED_)

hookfactory.h - 源码说明

本页面展示了「The main idea of this work is to create a driver for hiding selected processes and files.」中的 hookfactory.h 源码文件，采用 C头文件编程语言编写，共 47 行代码。您可以在线阅读完整代码内容，也可以返回资源详情页下载完整源码包进行本地学习和开发。

虫虫下载站收录了大量与processes相关的技术资源，包括源代码、技术文档、电路图等，是电子工程师和嵌入式开发者的专业学习平台。

⌨️ 快捷键说明

复制代码Ctrl + C

搜索代码Ctrl + F

全屏模式F11

增大字号Ctrl + =

减小字号Ctrl + -

显示快捷键?