Restore SSDT complete source program, driver-level
2016-08-23
1 0 0
no vote
Other
Earn points
Restore SSDT complete source program, drive-level source, protecting your PC security. By modifying the kernel native API hooks in SSDT implementation in Windows, user mode applications calls the API to request systems services, export these many DLL API., for example, to an open file or write to a pipe or equipment data, usually calls the WriteFile API to achieve, WriteFile is exported by Kernel32.dll. in Kernel32.dll, Executing WriteFile API call ZwWriteFile the API exported by Ntdll.dll origin. this work is actually done by ZwWriteFile in kernel mode. therefore, is only the implementation of ZwWriteFile in ntdll.dll delivers some very small amount of code to the kernel space is called
c++
源码
源程序
驱动
完整
恢复
SSDT
Related Source Codes
Local Path Planning Algorithm - DWA Algorithm
0
0
no vote
enDAQ-Shock-Data-Share-SRS-Blog
0
0
no vote
Calling chatGPT in a Windows application
0
0
no vote
Test Hello world
0
0
no vote
RCS calculation by one-way ray tracing
0
0
no vote
No comment