Description: XP, SSDT Hook ZwCreateThread code only applies to XP, drivers and user mode by the control program component is written in another program from the previous change over, so the code part of the structure is defined as the members of the excess to write SSDT Hook can refer to
To Search:
File list (Check if you may need any files):
TestHook\TestHook\BUILD
........\........\buildchk_wlh_x86.err
........\........\buildchk_wlh_x86.log
........\........\buildchk_wlh_x86.wrn
........\........\buildchk_wxp_x86.log
........\........\buildchk_wxp_x86.wrn
........\........\buildfre_wxp_x86.log
........\........\buildfre_wxp_x86.wrn
........\........\buildinc.cmd
........\........\BuildLog.htm
........\........\buildnumber.h
........\........\ddkbldenv.cmd
........\........\ddkpostbld.cmd
........\........\ddkprebld.cmd
........\........\Defs.h
........\........\drvcommon.h
........\........\drvversion.h
........\........\drvversion.rc
........\........\funcs.cpp
........\........\makefile
........\........\objchk_wxp_x86\i386\drvversion.res
........\........\..............\....\testhook.obj
........\........\..............\....\TestHook.pdb
........\........\..............\....\TestHook.sys
........\........\..............\....\vc80.pdb
........\........\..............\....\_objects.mac
........\........\...fre_wxp_x86\i386\drvversion.res
........\........\..............\....\testhook.obj
........\........\..............\....\TestHook.pdb
........\........\..............\....\TestHook.sys
........\........\..............\....\vc80.pdb
........\........\..............\....\_objects.mac
........\........\prefastchk_wlh_x86.log
........\........\PREfast_defects_chk_wlh_x86.xml
........\........\PREfast_defects_chk_wxp_x86.xml
........\........\PREfast_defects_chk_wxp_x86Sum.txt
........\........\sources
........\........\TestHook.cpp
........\........\TestHook.h
........\........\TestHook.vsprops
........\........\TestHook.WLH.vcproj
........\........\TestHook.WLH.vcproj.8.00.old
........\........\TestHook.WLH.vcproj.C79BF9D80C5A429.Administrator.user
........\........\TestHook.WLH.vcproj.LH-KFFVSLUHER5K.Administrator.user
........\........\TestHook.WLH.vcproj.sy0116-PC.sy0116.user
........\TestHook.sln
........\TestHook.suo
WinLoadTest\Release\WinLoadTest.exe
...........\.......\WinLoadTest.pdb
...........\WinLoadTest\defs.h
...........\...........\DrvInterface.cpp
...........\...........\main.cpp
...........\...........\Release\BuildLog.htm
...........\...........\.......\main.obj
...........\...........\.......\mt.dep
...........\...........\.......\vc90.idb
...........\...........\.......\vc90.pdb
...........\...........\.......\WinLoadTest.exe.intermediate.manifest
...........\...........\WinLoadTest.vcproj
...........\...........\WinLoadTest.vcproj.C79BF9D80C5A429.Administrator.user
...........\...........\WinLoadTest.vcproj.sy0116-PC.sy0116.user
...........\WinLoadTest.sln
...........\WinLoadTest.suo
TestHook\TestHook\objchk_wxp_x86\i386
........\........\...fre_wxp_x86\i386
........\........\objchk_wxp_x86
........\........\objfre_wxp_x86
WinLoadTest\WinLoadTest\Release
TestHook\TestHook
WinLoadTest\Release
...........\WinLoadTest
TestHook
WinLoadTest
Download