实现了一个简单的SSDT HOOK框架,提供 HOOK和UNHOOK接口用于挂钩自己的挂钩函数
Ssdt文件夹中是源代码,ssdt.sys是构建的驱动程序,首先使用instdrv装载ssdt.sys驱动,然后打开debugview即可看见输出打印的信息。
测试环境:windows xp sp3
请参考 docx文档
-
Notifications
You must be signed in to change notification settings - Fork 2
Cody2333/SSDT_HOOK
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
About
ssdt hook 框架的简单实现
Resources
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published