[C++] Windows SysCall - NtCreateFile

		Exetools > General > Source Code
[C++] Windows SysCall - NtCreateFile

03-25-2020, 13:40

Mahmoudnia Mahmoudnia is offline

Family

Join Date: Nov 2012

Posts: 239

Rept. Given: 64

Rept. Rcvd 145 Times in 50 Posts

Thanks Given: 210

Thanks Rcvd at 329 Times in 106 Posts

Quote:

Originally Posted by h4sh3m

Hi

it's good idea but as you know function indexes is changing in every revisions so you need to have an table and select valid index(0x55 in this case) based on os revision id or get correct value at runtime !

BR,
h4sh3m

Hello

Yes, Exactly.

These links includes all tables based on windows version and their revisions .

Code:

https://github.com/tinysec/windows-syscall-table
https://github.com/j00ru/windows-syscalls

The Following User Says Thank You to Mahmoudnia For This Useful Post:
niculaita (03-27-2020)

« Previous Thread | Next Thread »

Thread Tools
Show Printable Version Email this Page
Display Modes
Switch to Linear Mode Switch to Hybrid Mode Threaded Mode

Posting Rules
You may not post new threads You may not post replies You may not post attachments You may not edit your posts BB code is On Smilies are On [IMG] code is On HTML code is On Forum Rules

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Systrack - Linux kernel syscall implementation tracker	blue_devil	Community Tools	0	03-21-2024 15:06
C# (Classic .exe, Windows 10, Windows Phone etc.) Protection	delidolunet	General Discussion	7	10-11-2016 01:10
(Q) .NET App Source Code Protection (Silverlight, Windows Phone, Windows 8)	delidolunet	General Discussion	7	08-02-2013 10:33
Windows 2000 and Windows nt 4 sources, question	shady	General Discussion	2	04-15-2004 04:17

All times are GMT +8. The time now is 15:15.